Loading...

Knowledge Center


Malware W32/DistTrack - ExtraDAT, Stinger, and Emergency DAT release available
Technical Articles ID:  KB75963
Last Modified:  02/12/2014
Rated:


Environment

Multiple McAfee Products

Summary

McAfee is aware of a particularly malicious file infector that is causing blue screen errors on endpoints and is difficult to detect. While this malware seems to be a targeted attack, McAfee strongly recommends that you increase your protection by applying the August 15, 2012 Emergency DAT Release (DAT 6805) which includes a generic detection for the dropper that starts the infection.

McAfee has provided an ExtraDAT (W32DistTrack_Extra.zip) and a Stinger (W32DistTrack_Stinger.zip) for detection and removal of the dropper that starts the infection.

NOTES:
  • With DAT 6805 or greater in place, the ExtraDAT is not required.
  • These files are attached to this article. The password for W32DistTrack_Stinger.zip is mcafee123.
For more details about the threat, see PD23936.

Global Threat Intelligence (GTI) detects the known W32/DistTrack droppers when set to Medium. For information on enabling GTI in your McAfee product, see KB70130.

This article will be updated as new information becomes available.

Attachment 1

W32DistTrack_Extra.zip
708Bytes • < 1 minute @ 56k, < 1 minute @ broadband


Attachment 2

W32DistTrack_Stinger.zip
3.6MB • 11 minute(s) @ 56k, < 1 minute @ broadband


Rate this document

Did this article resolve your issue?

Please provide any comments below

Glossary of Technical Terms


Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.
United States - English
© 2003-2013 McAfee, Inc.