VirusW97M/FF.E
Analysis
- Virus consists of one macro module within the class
storage
- Virus hooks Word event handler which prevents the
opening of infected documents
- Virus modifies the "BootGUI" option in C:\MSDOS.SYS configuration file to prevent Windows from starting at boot time
Telemetry
Detection Availability
| FortiClient | |
|---|---|
| Extreme | |
| FortiMail | |
| Extreme | |
| FortiSandbox | |
| Extreme | |
| FortiWeb | |
| Extreme | |
| Web Application Firewall | |
| Extreme | |
| FortiIsolator | |
| Extreme | |
| FortiDeceptor | |
| Extreme | |
| FortiEDR |