question

Cosm1c-2566 avatar image
0 Votes"
Cosm1c-2566 asked LimitlessTechnology-2700 answered

Does Microsoft ATA have a signature for SolarFlare credential dumping tool?

How strong is it? Can it be bypassed by adding a timer to the payload?

windows-serverwindows-server-update-serviceswindows-server-security
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

LimitlessTechnology-2700 avatar image
0 Votes"
LimitlessTechnology-2700 answered

Hello @Cosm1c-2566

Not an expert in security myself, but it seems that it is in MS database of hacktools: https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=HackTool:Win32/SolarFlare.A!dha&ThreatID=2147771376

Regarding the information about signatures specifics or payload information Microsoft has been always secretive, as most of security companies, to avoid providing information that would help hackers to bend the code to bypass them.

Hope this helps with your query,


--If the reply is helpful, please Upvote and Accept as answer--

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.