none
Can SCEP or Windows Defender capture new variant JS.Deehunp of JS.Downloader? RRS feed

  • Question

  • Hi, Guys.

    Any information regarding new variant of JS.Downloader malware named JS.Deehunp and how to address it? (i.e. latest patches released)? What is its corresponding CVE number? Can this be detected via Microsoft's SCEP and/or Windows Defender?

    Symantec released a rapid response definition of this new string.

    Thank you.

    Thursday, August 15, 2019 5:08 AM

All replies

  • I suggest that you consult the Microsoft Security Intelligence Center at https://www.microsoft.com/en-us/wdsi. Keep in mind though that the threat names you've listed may not be universal and a quick web search doesn't reveal anything anywhere for "JS.Deehunp" so not sure if that's a typo or not. Where did you get these names from?

    Jason | https://home.configmgrftw.com | @jasonsandys

    Thursday, August 15, 2019 12:21 PM
  • Hi, Jason / All.

    This is a newly discovered worm by Symantec last August 6, 2019. 

    https://www.symantec.com/security-center/writeup/2019-080714-1006-99?om_rssid=sr-latestthreats30days

    Can this be detected by System Centre Endpoint Protection of Microsoft?

    Wednesday, September 4, 2019 6:27 PM
  • Same answer. Check the web site I linked to but as noted, keep in mind that just because Symantec calls a threat one thing, doesn't mean that other vendors call the threat the same thing though.

    Jason | https://home.configmgrftw.com | @jasonsandys

    Wednesday, September 4, 2019 6:46 PM