Concrete signature match: Trojan - Appears legitimate but performs malicious actions for .NET (Microsoft Intermediate Language) platform, family FormBook
This is a concrete detection of FormBook, a sophisticated info-stealing trojan. It is designed to pilfer credentials, browser data, and system information, and can also perform keylogging.
No detailed analysis available from definition files.
6aa1fa928c7215ec44ff6cfaba9ec3581cc3a39ff79d30b258814ddbbec8e8bd28f959fc9483c245c25c6beedc3f449913aeeef3810e43bfb251bc7cb3a998f950e10bd011719d1d3c43c1b6a945462a4684399a6f64dd264e8d03f0ac92c505Isolate the affected device immediately. Perform a full system scan to remove the threat and update all critical passwords used on the compromised system. Monitor accounts and network activity for suspicious behavior, considering a clean OS reinstallation if complete eradication is uncertain.