SentinelOne vs Wiper.coronavirus

On April 1st, a new malware emerged which leverages the Coronavirus in an attempt to target the emotions of their victims. When executed, the dropper will deposit numerous scripts and dependent files. The threat then proceeds to make a number of configuration changes that negatively affect the security posture of the infected host. The infection routine requires a reboot due to the changes to UAC. After reboot, additional payloads are executed, resulting in the display of an image of the Coronavirus adorned with additional messages following the theme. On this video, you can see how SentinelOne detects and prevents all artifacts and behaviors associated with Wiper.coronavirus