GozNym virus

  • 30 May 2016
  • 2 replies
  • 442 views

Has Webroot routed out the "GozNym" virus which attacks PC's loging into banking accounts?

2 replies

Userlevel 7
Hi jtillman
 
Welcome to the Community Forms.
 
Given that this threat is a 'merging' of two previously known threats and that the 'new' threat has been known about for a little while I would say that the answer in'Yes'.
 
Webroot analyses and add to its Cloud database over 200,000 files every day so the likelihood of this not already being covered are remote. However if concerned you can Open a Support Ticket and pose the question to the Support Team directly.
 
Hope that helps?
 
Regards, Baldrick
Userlevel 7
Badge +56
Hello ? and Welcome to the Webroot Community!
 
I would say yes WSA has you covered as they give an example here: https://securityintelligence.com/meet-goznym-the-banking-malware-offspring-of-gozi-isfb-and-nymaim/ and I checked the said MD5 Hash and the Webroot Cloud does detect it and they are always looking for new varients so you are well protected even if an undetected varient got onto your system as WSA's Identity Shield is very powerful even if infected: http://www.webroot.com/En_US/SecureAnywhere/PC/WSA_PC_Help.htm#C6_IDProtection/CH6a_ManagingID.htm
 

Relevant Sample MD5

The MD5 hash is 2A9093307E667CDB71884ECC1B480245
 
Thanks,
 
Daniel ;)
 


 


 
 

Reply