Trojan.ShadowBrokers

Short bio

Trojan.ShadowBrokers is Malwarebytes’ generic detection name for tools that exploit certain SMB vulnerabilities. The detection for these tools was named after the group that released them, the ShadowBrokers, aka Equation group.

Protection

Malwarebytes protects users from Trojan.ShadowBrokers by using real-time protection.

block Trojan.ShadowBrokers

Malwarebytes blocks Trojan.ShadowBrokers

Remediation

Malwarebytes can detect and remove Trojan.ShadowBrokers without further user interaction.

  1. Please download Malwarebytes to your desktop.
  2. Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  3. Then click Finish.
  4. Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  5. If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  6. When the scan is complete, make sure that All Threats are selected, and click Remove Selected.
  7. Restart your computer when prompted to do so.

Related blog content

ShadowBrokers releases more stolen information

The worm that spreads WanaCrypt0r

Select your language