This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Prabulingam_N1
Advisor
‎2017-05-21 09:10 AM

New Trojan - Adylkuzz

Hi All,

Anyone have information on New Trojan called: Adylkuzz

(Trojan.Adylkuzz is a Trojan horse that downloads a cryptocurrency miner onto the compromised computer)

Mostly affects old Windows.

Regards, Prabu

0 Kudos
3 Replies
Prabulingam_N1
Advisor
‎2017-05-21 11:53 PM

Also I got an update from Checkpoint experts as below:

"Check Point protection currently detects: Adlkuzz (Trojan.Win32.Adylkuzz.a, Trojan.Win32.Adylkuzz.b, Trojan.Win32.Adylkuzz.c, Trojan.Win32.Adylkuzz.d) which utilizes SMB vulnerabilities to spread via Eternalblue and Doublepular; then ultimately mines Minero cryptocurrency on a compromised host"

But I have updated IPS Database and ThreatPrevention (AV/AB/AS all

were currently updated)

Unable to find those Trojan listed for protection.

Anyone can suggest.

Regards, Prabu

0 Kudos
Prabulingam_N1
Advisor
‎2017-06-20 02:17 AM

Dear All,

Now we can see the signatures for Trojan - Adylkuzz in Anti-Bot. We can now action these to "Prevent"

(Trojan.Win32.Adylkuzz.A, Trojan.Win32.Adylkuzz.B, Trojan.Win32.Adylkuzz.C, Trojan.Win32.Adylkuzz.D, (Trojan.Win32.Adylkuzz.E, Trojan.Win32.Adylkuzz.F)

Regards, Prabu

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top