June 4, 2021

Trojan was executed but removed immediately, am I fucked?

I’ll try to be as exact as possible with the actions I took. For some context one of my friends’ PC was recently compromised by a trojan and as a result his discord account was also compromised. From his account he sent me a file that looked to be a executable game for his school project (he’s doing a comp sci degree) and asked me to test it out.

I accidentally executed the program which I thought that my friend had made and Windows Defender immediately picked up and quarantined the executable and the dll it put in my appdata folder. I ran a full system scan as well as an offline scan after this and it told me that no threats were found. I also ran a full malwarebytes scan which told me the same. Should I do a full system reset and change all my passwords or am I just being paranoid?

Comments

A-e-r-o-s-p-h-e-r-e

Give Windows Defender a Pat on the back and continue your computering, seems like you’re safe.

Relaaaxx

Here is the exact infected file and the signature:
c:usersUSERappdatalocaltemprar$exb3604.19594block dash 3.4.exe
Trojan:Script/Wacatac.B!ml

I did not extract the dll files in the rar itself and only the executable itself when I executed it.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.