Keylog/Klogger
Analysis
Keylog/Klogger is a compressed file of 5 other tools.
1.) Blat - for sending spam mails.
2.) KeyLogger - hooks the keystroke and loads into memory by adding its file to C:\Winnt\System32\Win042.exe.
3.) Backdoor - opens a port for external hacker to send system command.
4.) Kill - for removing process from memory.
5.) NTRights - for updating NT User Rights.
Most of the tools were written on Win16 based.
Recommended Action
Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option