We had a detection today listed as Trojan-FLOM!12DF1F1EB1A4. It appears to have been introduced via a USB drive. It was found in scanning these files all detected as the infection above.
SanDiskSecureAccess.exe
System Volume Information.exe
FOUND.000.exe
6050 db 5_files.exe
The thing that bothers me about this, is that I can find no data on the threat detection or what it is or what it does or if there are other actions that should be taken.
If another machine got this that did not have protection, what would have occurred?
Solved! Go to Solution.
Hi User27605043,
This looks like a somewhat detection for what might be considered a dropper. From what I can find, it will attempt to drop some files on disk and create a registry run entry for persistence. In some cases, they may be used to set up additional infection or serve as a backdoor, however it can be difficult to determine the exact behavior without a full analysis.
Hope this helps!
Hi User27605043,
This looks like a somewhat detection for what might be considered a dropper. From what I can find, it will attempt to drop some files on disk and create a registry run entry for persistence. In some cases, they may be used to set up additional infection or serve as a backdoor, however it can be difficult to determine the exact behavior without a full analysis.
Hope this helps!
Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA