Rootkit.Fileless.MTGen

Short bio

Rootkit.Fileless.MTGen is Malwarebytes’ generic detection for fileless infections that use a rootkit to hide their presence. In the majority of cases, they use registry keys designed to run PowerShell commands that carry out the rest of the infection. Other such commands, we’ve also seen the mshta command.

Protection

Malwarebytes protects users from Rootkit.Fileless.MTGen using real-time protection to block the trojans that install these rootkits.

prevent Rootkit.Fileless.MTGen

Malwarebytes prevents Rootkit.Fileless.MTGen

Remediation

Malwarebytes can detect and remove Rootkit.Fileless.MTGen without further user interaction.

  1. Please download Malwarebytes to your desktop.
  2. Double-click MBSetup.exe and follow the prompts to install the program.
  3. When your Malwarebytes for Windows installation completes, the program opens to the Welcome to Malwarebytes screen.
  4. Click on the Get started button.
  5. Click Scan to start a Threat Scan.
  6. Click Quarantine to remove the found threats.
  7. Reboot the system if prompted to complete the removal process.

Related blog content

Fileless Infections: An Overview
Rootkits

Select your language