Concrete signature match: Trojan - Appears legitimate but performs malicious actions for .NET (Microsoft Intermediate Language) platform, family FormBook
This is a concrete detection of FormBook, a sophisticated information-stealing Trojan. It is designed to harvest sensitive data like credentials, financial information, and cryptocurrency wallet details, and can also act as a downloader for other malicious payloads.
No specific strings found for this threat
5a721e420c6fc129a198af6fd7458202c574cff68e0b60b4372a8af5767bd2d9Immediately isolate the affected endpoint from the network. Perform a full system scan with updated antivirus software and remove all detected threats. Reset all user passwords, especially those used in web browsers or email clients, and ensure all system and software vulnerabilities are patched.