截屏视频帮助

RAT W32.Extrat Activity

创建时间: 30 1 月 2013 • Updated: 06 2 月 2013 | 4 条评论
julrendo 的图片
此问题已解决。 请查看解决方案。
good

I can indicate the date on which the attack was detected:

RAT W32.Extrat Activity

http://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=26353

thank you very much

评论 条评论跳转至最新评论

Brɨan 的图片

Yes the definition date is available on the link you posted. Are you having an issue with it?

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

Mithun Sanghavi 的图片

Hello,

Yes, W32.Extrat was discovered on November 12, 2012.

W32.Extrat is a worm that spreads by copying itself to removable drives and P2P networks. It also opens a back door and steals information from the compromised computer.

Check this - 

http://www.symantec.com/security_response/writeup.jsp?docid=2012-111221-3742-99

BLOG from Symantec Security Response Team

W32.Extrat: Syrian Conflict Used To Deliver Xtreme RAT

http://bit.ly/WJB1Mt

Hope that helps!!

Mithun Sanghavi
Associate Security Architect

MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

解决方案
SebastianZ 的图片

The current definitions should clean up this threat, are you having any issues with the threat not being detected?