Jump to content

Malware.Exploit.Agent.Generic: explorer.exe detections


Recommended Posts

Hi,

since some time, we get these detections.

It started with:
Location:    \u00dc\u0087\u00e4\u00bd\u0083\u00e3\u0095\u008d\u0002\u0018explorer.exe

35990496_2022-05-31explorer-exe.jpg.137c5a79aeef3499492254a48636a704.jpg

 

and later on we got:
Location:    ܇佃㕍explorer.exe

1222586692_2022-05-31explorer-exe2.jpg.4bfd9ea6404e2f6357fbbf102a50341e.jpg

 

I have no clue, what kind of malware this seems to be and where it resides or why there are displayed foreign characters in front of "explorer.exe".
Anyone has a clue, how to proceed?
We did scans with other antimalware-products, but did not find anything.


Help appreciated, regards
Daniel

Link to post
Share on other sites

  • Staff

*** This is an automated reply ***

 

Thanks for posting in the Malwarebytes Business section of the forum

For self-help articles, please see the following link
https://service.malwarebytes.com/hc/en-us

If you're unable to locate an answer from the articles in that link or here on the forums, you're more than welcome to post a new question.

Please note that if you do need direct support, please create a support ticket from the following link.

Business Support
https://service.malwarebytes.com/hc/en-us/requests/new

 

Thanks in advance for your patience.

-The Malwarebytes Forum Team

 

 

Link to post
Share on other sites

  • AdvancedSetup changed the title to Malware.Exploit.Agent.Generic: explorer.exe detections

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.