Attention: We have transitioned to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access. While the app may appear unverified, you can confirm its legitimacy by verifying the App ID provided.
8 entries found.
Behavior:Win32/Qakbot.AB
Alert level:
severe
Behavior:Win32/Qakbot.AC
Alert level:
severe
Behavior:Win32/Qakbot.AD
Alert level:
severe
Behavior:Win32/Qakbot.A!np
Microsoft Defender Antivirus detects and removes this threat.
This threat, also known as QBot, is an malicious information stealer software. It can intercept and steal sensitive financial data. This threat has also been associated with human-operated ransomware attacks.
Alert level:
severe
Behavior:Win32/Qakbot.A!nri
Microsoft Defender Antivirus detects and removes this threat.
This threat, also known as QBot, is an malicious information stealer software. It can intercept and steal sensitive financial data. This threat has also been associated with human-operated ransomware attacks.
Alert level:
severe
Behavior:Win32/Qakbot.A!sms
Microsoft Defender Antivirus detects and removes this threat.
This threat is an malicious information stealer software, also known as QBot. It can intercept and steal sensitive financial data. This threat has also been associated with human-operated ransomware attacks.
Alert level:
severe
Behavior:Win32/Qakbot.A!ems
Alert level:
severe
Behavior:Win32/QakBot.A!ibt
Microsoft Defender Antivirus detects and removes this threat.
This threat, also known as QBot, is an malicious information stealer software. It can intercept and steal sensitive financial data. This threat has also been associated with human-operated ransomware attacks.
Alert level:
severe