Does ESET protect me from Filecoder (CryptoLocker) malware?

KB Solution ID: SOLN3433|Last Revised: February 10, 2015

Issue

  • Your ESET product detects a variant of the threat  "Win32/Filecoder", for example, filecoder.cr
     
  • Your ESET product detects the threat "Win32/Gpcode"
     
  • Your ESET product detects the threat "Win32/TrojanDownload.Elenoocka.A."
     
  • These threats are also known as "CryptoLocker", "Cryptowall", "Dirty decrypt", and "CTB locker"

Solution

ESET software can detect and block most variants of the Win32/Filecoder malware.

Keep ESET updated

Keep Remote Desktop Protocol disabled

Filecoder malware often accesses target machines using Remote Desktop Protocol (RDP), a Windows utility that allows others to access your desktop remotely. If you do not require the use of RDP, you can disable RDP to protect your machine from Filecoder and other RDP exploits. For instructions to do so, visit the appropriate Microsoft Knowledge Base article below:

Keep Advanced Memory Scanner and Exploit Blocker enabled

These newly designed ESET algorithms strengthen protection against malware that has been designed to evade detection by antimalware products through the use of obfuscation and/or encryption.

Keep ESET Live Grid enabled

In some cases, your ESET product with ESET Live Grid enabled may respond faster to new threats than virus signature database update.

Minimize the risk of malware attack

Do not disable User Account Control (UAC). Do not open suspicious attachments purporting to be a fax, invoice, receipt, which have a suspicious name or you did not expect them at all.

What can I do to minimize the risk of a malware attack?
 

To learn more about how you can protect your system from this malware, we recommend that you read the following ESET blog posts:

 

Need Personalized Assistance in North America?

If you're not already an ESET customer, ESET Support Services are available to clean, optimize and secure your system. Call 866-944-3738 or click to schedule an appointment with ESET Support Services today!

Rate this article:
1 2 3 4 5
Please comment on your rating...
We cannot respond to feedback from this form. Requests for assistance should be submitted through your normal support channel.
5 - Definitely
4 - Mostly
3 - Somewhat
2 - Not Really
1 - Not At All