Krad.Botnet
Description
This indicates that a system might be infected by Krad Botnet.
Krad is a malware that targets Windows platform. The malware collects a user's document files and sends them to a C&C server. The malware allows a remote attacker to execute shell commands, read/write hosts files, modify registry, and collect credentials for Outlook and browsers.
Affected Products
Any unprotected Windows system is vulnerable
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
If required, the signature's action can be set to "Block".
Please use Anti-Virus software to scan and clean the infected computer.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |