Attention: We have transitioned to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access. While the app may appear unverified, you can confirm its legitimacy by verifying the App ID provided.
4 entries found.
Win32/Rovnix
Microsoft security software detects and removes this family of threats.
This malware family can download other threats onto your PC, such as Win32/Carberp and Win32/Vundo.
They can be installed on your PC by exploits, or other malware, such as Win32/Upatre.
We have seen new Rovnix variants exploit vulnerabilities addressed in CVE-2013-3660, CVE-2014-4113, and CVE-2015-1701.
Alert level:
severe
TrojanDropper:Win32/Rovnix.I
Windows Defender detects and removes this threat.
This trojan makes changes to your PC so that it downloads and runs other malware each time it starts.
Alert level:
severe
Trojan:Win32/Rovnix
Alert level:
severe
TrojanDropper:Win32/Rovnix
Alert level:
severe