Concrete signature match: Trojan - Appears legitimate but performs malicious actions for 32-bit Windows platform, family Etset
Trojan:Win32/Etset!rfn is a concrete detection for the SmokeLoader malware, a trojan that acts as a backdoor to download and install additional malicious payloads. Its primary function is to give attackers a foothold on the system to deploy more dangerous threats like ransomware, banking trojans, or cryptocurrency miners.
No detailed analysis available from definition files.
3f8e1a739f974389b25df9a3a2b19bbd15ad87baba51df3a339ec6ac87e96013579c9348d779828a6c496d6946c6a192853aad02eee4472ea0a1fb4b7624624fe51fadb305ca1cc85ca1718630197fe9ce84a95ac95acc9a074ca60eba296a3a426c058bc1bb6b9088bfbec9582f54cb3256fc42d66cdd32a816c8c46321c8c8051a19599ed53c233debbd32daa4645bae40e766b387d77a44428f61ec1046a6Immediately isolate the affected machine from the network. Use Windows Defender to remove the threat, then perform a full system scan to find any secondary payloads. Due to its nature as a loader, consider the system fully compromised and reimage it from a known-good backup.