W32/Dloadr.AMA!tr.dldr
Analysis
W32/Dloadr.AMA!tr.dldr - 06-09-01
, with file size 2100
More Info:
When executed, it connects to a remote web site and downloads the file au_b1[1].exe, saves it to the System root folder as temp1.exe, and executes it. The downloaded file is detected as W32/Small.DMA!tr.dldr.Telemetry
Detection Availability
FortiGate | |
---|---|
Extended | |
FortiClient | |
Extreme | |
FortiAPS | |
FortiAPU | |
FortiMail | |
Extreme | |
FortiSandbox | |
Extreme | |
FortiWeb | |
Extreme | |
Web Application Firewall | |
Extreme | |
FortiIsolator | |
Extreme | |
FortiDeceptor | |
Extreme | |
FortiEDR |