VirusMSIL/Agent.AW!tr.pws
Analysis
MSIL/Agent.AW!tr.pws is classified as a password stealing trojan.
Password Stealing Trojan searches the infected system for passwords and send them to the hacker.
The Fortinet Anti-Virus Analyst Team is currently in the process of creating a detailed description for this virus.
Recommended Action
- FortiGate Systems
- Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
FortiClient Systems
- Quarantine/delete files that are detected and replace infected files with clean backup copies.
Telemetry
Detection Availability
| FortiClient | |
|---|---|
| Extreme | |
| FortiMail | |
| Extreme | |
| FortiSandbox | |
| Extreme | |
| FortiWeb | |
| Extreme | |
| Web Application Firewall | |
| Extreme | |
| FortiIsolator | |
| Extreme | |
| FortiDeceptor | |
| Extreme | |
| FortiEDR |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-08-25 | 79.88800 | Sig Updated |
| 2020-07-28 | 79.21600 | Sig Updated |
| 2020-07-14 | 78.88000 | Sig Updated |
| 2020-05-31 | 77.82700 | Sig Updated |
| 2020-05-31 | 77.82600 | Sig Updated |
| 2020-05-31 | 77.82300 | Sig Updated |
| 2020-04-21 | 76.87400 | Sig Updated |
| 2020-04-21 | 76.87100 | Sig Updated |
| 2020-04-21 | 76.85900 | Sig Updated |
| 2020-04-10 | 76.59600 | Sig Updated |