Bladabindi.Botnet

description-logoDescription

This indicates that a system might be infected by Bladabindi Botnet.
Bladabindi is a Windows malware that can steal passwords, log key strokes, take screenshots, execute arbitrary commands, download and install additional malware.
Please note: this signature sometimes gets triggered by botnet scanning traffics from Shodan scanners. Please check the source IP to verify if it's an actual infection on the network.

affected-products-logoAffected Products

Any unprotected Windows system is vulnerable.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

If required, the signature's action can be set to "Block".
Please use Anti-Virus software to scan and clean the infected computer.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)