Riskware/Generic_bg
Analysis
Riskware/Generic_bg is a highly generic detection for a set of Riskware samples.
Below are some of its observed characteristics/behaviours:
- As of the time of this writing most of the samples belonging to this detection has been found to be corrupted/truncated or either part of an incomplete installer.
- Below are illustrations of sample icons this Riskware used:
- Figure 1: Samples.
Recommended Action
- Make sure that your FortiGate/FortiClient system is using the latest AV database.
- Quarantine/delete files that are detected and replace infected files with clean backup copies.
Telemetry
Detection Availability
FortiGate | |
---|---|
Extended | |
FortiClient | |
Extreme | |
FortiAPS | |
FortiAPU | |
FortiMail | |
Extreme | |
FortiSandbox | |
Extreme | |
FortiWeb | |
Extreme | |
Web Application Firewall | |
Extreme | |
FortiIsolator | |
Extreme | |
FortiDeceptor | |
Extreme | |
FortiEDR |
Version Updates
Date | Version | Detail |
---|---|---|
2019-04-09 | 67.67400 | Sig Updated |
2019-04-02 | 67.50600 | Sig Updated |
2019-03-26 | 67.33800 | Sig Updated |
2019-03-13 | 67.02500 | Sig Updated |
2019-03-04 | 66.82000 | Sig Updated |
2019-03-04 | 66.82000 | Sig Updated |
2019-03-01 | 66.75100 | Sig Updated |
2019-03-01 | 66.75000 | Sig Updated |
2019-03-01 | 66.74600 | Sig Updated |
2019-02-27 | 66.69600 | Sig Updated |