Zauberonkel 0 Posted March 19, 2021 Share Posted March 19, 2021 Hi, since what date does ESET recognize DearCry (Win32/Filecoder.DearCry.A? I can't find DearCry on virusradar.com Thanks Zauberonkel Link to comment Share on other sites More sharing options...
Administrators Solution Marcos 4,919 Posted March 19, 2021 Administrators Solution Share Posted March 19, 2021 The detection was created on March 10. The ransomware might have been detected proactively by pre-execution or post-execution protection modules. Link to comment Share on other sites More sharing options...
itman 1,629 Posted March 19, 2021 Share Posted March 19, 2021 (edited) 1 hour ago, Marcos said: The detection was created on March 10. That sounds about right. Eset was not detecting prior to that per this JoeSandbox analysis created on 3/9: https://www.joesandbox.com/analysis/367681/0/html Edited March 19, 2021 by itman Link to comment Share on other sites More sharing options...
itman 1,629 Posted March 19, 2021 Share Posted March 19, 2021 BTW - this ransomware is being delivered to unpatched Exchange servers. Link to comment Share on other sites More sharing options...
Zauberonkel 0 Posted March 25, 2021 Author Share Posted March 25, 2021 On 3/19/2021 at 12:50 PM, Marcos said: The detection was created on March 10. The ransomware might have been detected proactively by pre-execution or post-execution protection modules. Thank you very much. Link to comment Share on other sites More sharing options...
Most Valued Members Nightowl 198 Posted March 25, 2021 Most Valued Members Share Posted March 25, 2021 (edited) 4 minutes ago, Zauberonkel said: Thank you very much. It's recommended that you apply patches to unpatched Exchange Servers. Read here for more : https://techcommunity.microsoft.com/t5/exchange-team-blog/released-march-2021-exchange-server-security-updates/ba-p/2175901 Edited March 25, 2021 by Nightowl Link to comment Share on other sites More sharing options...
Recommended Posts