Riskware/RemoteAdmin

description-logoAnalysis

Riskware/RemoteAdmin is a generic detection for a riskware, this is synonymous to Generic PUA or Generic PUP. Since this is a generic detection, riskware that are detected as Riskware/RemoteAdmin may have varying behaviour.
Below are some of its observed characteristics/behaviours:

  • Files detected as Riskware/RemoteAdmin fall under the category of remote monitoring and management (RMM) software and is classified as grayware.

  • These files may potentially compromise or weaken a user's security by allowing remote monitoring and control over a user's system.

recommended-action-logoRecommended Action

  • Make sure that your FortiGate/FortiClient system is using the latest AV database.
  • Quarantine/delete files that are detected and replace infected files with clean backup copies.

Telemetry logoTelemetry

Detection Availability

FortiGate
FortiClient
FortiAPS
FortiAPU
FortiMail
FortiSandbox
FortiWeb
Web Application Firewall
FortiIsolator
FortiDeceptor
FortiEDR

Version Updates

Date Version Detail
2024-04-29 92.03817
2024-04-01 92.02970
2024-03-31 92.02951
2024-03-11 92.02336
2024-02-07 92.01362
2024-01-31 92.01152
2024-01-29 92.01092
2024-01-22 92.00876
2024-01-17 92.00732
2024-01-08 92.00462