VirusW97M/VMPCK1.BY
Analysis
- Virus consists of one macro module named "xix"
- Virus hooks Word event handlers which prevents
the opening of infected documents, or by using the
menu items "Tools | Macro"
- Virus contains this comment line in the code-
'VMPCK 1.0d w/Random Path + Update
'=================================
'Code Written by VicodinES
'=================================
'Poppy ID : 5083-QyUo94005083.c
'=================================
'This Virus Is: Xix.Poppy
Telemetry
Detection Availability
| FortiClient | |
|---|---|
| Extreme | |
| FortiMail | |
| Extreme | |
| FortiSandbox | |
| Extreme | |
| FortiWeb | |
| Extreme | |
| Web Application Firewall | |
| Extreme | |
| FortiIsolator | |
| Extreme | |
| FortiDeceptor | |
| Extreme | |
| FortiEDR |