Virus

Analysis

W64/ShadowBrokers.A!exploit is classified as an exploit.
An exploit is a malicious program that takes advantage of a software vulnerability that may enable a remote attacker to gain access to the targeted system.
The Fortinet Antivirus Analyst Team is constantly updating our descriptions. Please check the FortiGuard Encyclopedia regularly for updates.

Recommended Action

Make sure that your FortiGate/FortiClient system is using the latest AV database.
Quarantine/delete files that are detected and replace infected files with clean backup copies.

Telemetry

Detection Availability

FortiGate
FortiClient
FortiAPS
FortiAPU
FortiMail
FortiSandbox
FortiWeb
Web Application Firewall
FortiIsolator
FortiDeceptor
FortiEDR

Version Updates

Date	Version	Detail
2021-02-23	84.00249
2020-12-07	82.38400	Sig Updated
2020-07-21	79.04800	Sig Updated
2020-04-17	76.76600	Sig Updated
2019-11-26	73.35800	Sig Updated
2019-02-25	66.65300	Sig Updated
2019-02-25	66.65100	Sig Updated
2019-02-05	66.16500	Sig Updated
2019-01-01	65.31600	Sig Updated

ID	7364531
Released	Apr 16, 2017
Description Updated	Apr 16, 2017
Platform Profile	Win64 file format / PE 64 bitW95
Profile Type	Exploits (exploit)

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

W64/ShadowBrokers.A!exploit

Analysis

Recommended Action

Telemetry

Detection Availability

Version Updates

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Virus

W64/ShadowBrokers.A!exploit

Analysis

Recommended Action

Telemetry

Detection Availability

Version Updates

Threat Intelligence
Center