Concrete signature match: Trojan - Appears legitimate but performs malicious actions for .NET (Microsoft Intermediate Language) platform, family FormBook
This detection identifies FormBook, a highly sophisticated information-stealing Trojan, using machine learning behavioral analysis. FormBook is known for exfiltrating sensitive data such as credentials, financial information, and browsing history, and can facilitate further remote control or malware deployment.
No specific strings found for this threat
b0ee478720418f12715d7866f7b106c85156fc06dcb333cfcf46244f6c85bdaeImmediately isolate the affected system from the network to prevent further data exfiltration or spread. Perform a full, deep scan with updated antivirus software to ensure complete removal. All credentials used on the system (especially for banking, email, and social media) must be considered compromised and should be changed from a secure, clean device. Monitor for any unusual network activity or account access.