Welcome to the third of CounterTack’s four-part video series on Advanced Threats. In this video, a user unknowingly installs dropper on their endpoint during a browser session.
In this demo, the user downloads vlcplayer.exe which in reality is the NetSky malware. The endpoint however, is running CounterTack’s EDR solution, which can detect malware running in memory, using our Digital DNA technology. Within less than a second, the process is killed, it disappears from task manager, and a network quarantine message appears notifying the user their endpoint has been quarantined by CounterTack’s endpoint sensor.