Riskware/CobaltStrike_HashDump
Analysis
Riskware/CobaltStrike_HashDump is classified as a type of Riskware.
Riskware is any potentially unwanted application that is not classified as malware, but may utilize system resources in an undesirable or annoying manner, and/or may pose a security risk.
The Fortinet Antivirus Analyst Team is constantly updating our descriptions. Please check the FortiGuard Encyclopedia regularly for updates.
Recommended Action
- Make sure that your FortiGate/FortiClient system is using the latest AV database.
- Quarantine/delete files that are detected and replace infected files with clean backup copies.
Telemetry
Detection Availability
FortiGate | |
---|---|
Extended | |
FortiClient | |
Extreme | |
FortiAPS | |
FortiAPU | |
FortiMail | |
Extreme | |
FortiSandbox | |
Extreme | |
FortiWeb | |
Extreme | |
Web Application Firewall | |
Extreme | |
FortiIsolator | |
Extreme | |
FortiDeceptor | |
Extreme | |
FortiEDR |
Version Updates
Date | Version | Detail |
---|---|---|
2021-02-24 | 84.00275 | |
2021-01-28 | 83.62300 | Sig Added |
2020-12-21 | 82.71500 | Sig Added |
2020-11-26 | 82.11400 | Sig Updated |
2020-11-26 | 82.11300 | Sig Added |
2020-10-14 | 81.08000 | Sig Added |
2020-10-08 | 80.95500 | Sig Added |
2020-09-16 | 80.40800 | Sig Added |
2020-08-21 | 79.79400 | Sig Added |
2020-04-30 | 77.07400 | Sig Added |