I'm concerned about the Petya incident and would like to know how to go about blocking Microsoft PsExec tool
This thread was automatically locked due to age.
I'm concerned about the Petya incident and would like to know how to go about blocking Microsoft PsExec tool
Hello Todd Villeneuve,
psexec is detected as PUA since 2006.
What psexec basically does isn't really rocket science - any decent malware writer could come up with its basic and abused functionality in minutes. That a know tool is used stems from the fact that it's often used for system administration, software deployment and things like that. There's a chance that it is white-listed ...
Christian