Endpoint Protection

Hi All,

Good day.

I just want to know if SEP already detect this kind of malware (Backdoor.APT.NS01) or is SEP detect this in different name/malware?

Thanks and regards,

Hi,

i only see

https://www.symantec.com/security_response/writeup.jsp?docid=2003-012112-0840-99

and no other, if you have the variant please submit it to symantec

do you have suspected binaries with you  ? if so go ahead and submit the samples in the portal so that SR team would check it out. if you are just looking for information, please share us the hash value so that can get you more accurate details

Hi Mychael,

It's almost impossible to say just based on name alone. Different vendors have different names for threats. Do you have any submissions or perhaps a news article about that "Backdoor.APT.NS01"?

Many thanks in advance!

Mick

I would suggest you to submit the samples to submit.symantec.com/websubmit/bcs.cgi if BCS.

Change the link as per the support u got.

Submit a sample here to see:

https://www.virustotal.com/

Yes and No.

The only reference I find to Backdoor.APT.NS01 is an article by Fireeye.

https://www.fireeye.com/blog/threat-research/2013/04/the-mutter-backdoor-operation-beebus-with-new-targets.html

The sample FireEye named Backdoor.APT.NS01  in this report is detected by Symantec as Trojan.gen.2

https://www.virustotal.com/en/file/f90dee13eee2d2bfa7df31bbae6fc86e907be38a297e97bd1cbfc7a2b4ffd7e0/analysis/

Unfortunately this is no guarantee that Symantec detecs other morphed versions of this malware.

Hi Mychael,

Just a ping to see if anything additional is needed?  The thread is still marked "needs solution."

Wih thanks and best regards,

Mick

Thanks all for your reply.

Hi Mychael,

Marking the best answer for you as solution will help other looking for the same..

Cheers.