HTML/Agent.BF60!tr
Analysis
HTML/Agent.BF60!tr is a detection for a trojan.
- Following are some of the near/exact IOCs/file hash associated with this detection:
- 68335d650a61f7cb3243181eb56dbf60
- This malware causes the browser to open up another instance of another page.
- The following are some illustrations related to the malware during our quick analysis:
- Figure 1: Page redirect.
- Figure 2: Page redirect.
- Figure 3: Page redirect notification.
Recommended Action
- Make sure that your FortiGate/FortiClient system is using the latest AV database.
- Quarantine/delete files that are detected and replace infected files with clean backup copies.
Telemetry
Detection Availability
FortiClient | |
---|---|
Extreme | |
FortiMail | |
Extreme | |
FortiSandbox | |
Extreme | |
FortiWeb | |
Extreme | |
Web Application Firewall | |
Extreme | |
FortiIsolator | |
Extreme | |
FortiDeceptor | |
Extreme | |
FortiEDR |