Rule Document 1:66396

Report a false positive

Rule Category

MALWARE-OTHER --

Alert Message

MALWARE-OTHER Win.Trojan.Fast16 download attempt

Rule Explanation

This rule specifically hits on a binary pattern in the binary's code this is unlikely to change and is necessary for the malicious behavior of the executable.

What To Look For

This rule triggers when it detects a known malicious driver being transferred.

Known Usage

Attacks/Scans seen in the wild

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

None

Additional Links

virustotal.com/gui/file/07c69fc33271cf5a2ce03ac1fed7a3b16357aec093c5bf9ef61fbfa4348d0529

Rule Vulnerability

No information provided

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.

None