We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
VirTool:Win32/VBInject.DN
Detected by Microsoft Defender Antivirus
Aliases: W32/Trojan2.LOEY (Command) Trojan.Win32.VB.zyk (Kaspersky) Trojan.VB.IBON (VirusBuster) Trojan.Win32.VB (Ikarus) Trojan.Win32.Generic!BT (Sunbelt Software)
Summary
VirTool:Win32/VBInject.DN is a detection for an obfuscator wrapper used by malicious executables. The malicious executable is usually encrypted/compressed and stored inside the wrapper. When executed, it decodes the malicious executable and injects it into a clean process, for example, "explorer.exe", or loads it into a new process of its own.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as Microsoft Security Essentials, or the Microsoft Safety Scanner. For more information about using antivirus software, see http://www.microsoft.com/security/antivirus/av.aspx.
Follow us
