W32/Agent.IZ!tr
Analysis
W32/Agent.IZ!tr - 05-12-20
General Info:
This threat is a "PE" executable file, with file size 348160
Installation to System:
- And creates these registry entries:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\InternetHostSecurity = "undefinedSystemFolderundefined\regsvchost.exe"
Telemetry
Detection Availability
FortiGate | |
---|---|
Extended | |
FortiClient | |
FortiMail | |
FortiSandbox | |
FortiWeb | |
Web Application Firewall | |
FortiIsolator | |
FortiDeceptor | |
FortiEDR |