W32/Feebs@mm
Analysis
- undefinedSYSTEMundefined\mscornet.exe
- undefinedSYSTEMundefined\ld*.tmp
- key: HKLM\SOFTWARE\MicrosoftWindows\CurrentVersion\policies\explorer
- value:default
- data:
- key: HKLM\SOFTWARE\MicrosoftWindows\CurrentVersion\policies\explorer\run
- value:default
- data:
- key: HKLM\SOFTWARE\MicrosoftWindows\CurrentVersion\policies\explorer\run\wininet.dll
- value: mscornet.exe
- data:
- www.gigs7.com
- www.webmanaged.net
- www.freeprohosting.net
Recommended Action
-
FortiGate Systems
- Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
Telemetry
Detection Availability
FortiClient | |
---|---|
Extreme | |
FortiMail | |
Extreme | |
FortiSandbox | |
Extreme | |
FortiWeb | |
Extreme | |
Web Application Firewall | |
Extreme | |
FortiIsolator | |
Extreme | |
FortiDeceptor | |
Extreme | |
FortiEDR |