Hello,
Virus Scan had found WASM\Cryptonight on computer. Threat target file path: C:\Users\*\AppData\Local\Google\Chrome\User Data\Default\Cache\*.
After that I deleted Chrome and all the related files. Unfortunately, it didn't help.
How can I solve this? What is the source of WASM\Cryptonight?
Thanks.
Solved! Go to Solution.
I am checking the history files on our device to see if I can determine where it may have come from. There are a lot of the crypt threats showing up lately but they are being caught.
Make sure you check any other device/server that might be connected such as share drives. Inspect those devices or run a scan
Make sure to clean all cache and temp files
UPDATE the device I investigated went out to healthcare sites of legitimate means. There was one situation where someone had accessed their personal Google account so that could have been a source if they had a bad email
I cleaned all cache/temp files on that device. I found no suspicious files or activities. I have not seen the threat alert since.
I am checking the history files on our device to see if I can determine where it may have come from. There are a lot of the crypt threats showing up lately but they are being caught.
Make sure you check any other device/server that might be connected such as share drives. Inspect those devices or run a scan
Make sure to clean all cache and temp files
UPDATE the device I investigated went out to healthcare sites of legitimate means. There was one situation where someone had accessed their personal Google account so that could have been a source if they had a bad email
I cleaned all cache/temp files on that device. I found no suspicious files or activities. I have not seen the threat alert since.
I use Firefox almost exclusively and found both this and Trojan:JS/Miner.A so it can affect more than just Chrome.
Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA