#Q3, could not find other than this, Why not this result “Torjan:MSIL/Rozena.KAE!MTB” accepted ???
#Q3 . According to Windows Defender Antivirus, what is the name of the malware record reported for Sample2?
2 Likes
Microsoft does change the way they designate malware from time to time. It’s possible the answer needs to be updated. I will check and get back to you.
Sample 2 is not Trojan:MSIL/Rozena.KAE!MTB
The answer I got from Defender matches the answer expected in the lab.
This is also what is happening to me.
Just to be clear, I am extracting sample2.zip and windows defender is giving me Trojan:MSIL/Rozena.KAE!MTB. I’ve done it twice just to make sure and it gave me this both times.
1 Like
I am also having the exact issue and Defender has the name as Trojan:MSIL/Rozena.KAE!MTB. I tried doing the steps again, same result
I will add this as an accepted answer since multiple students are reporting the same thing.
1 Like
Has anyone been able to find a solution to this?
I have the same problem.
Trojan:MSIL/Rozena.KAE!MTB should be an accepted answer now.
I don’t accept that answer
1 Like
Try that answer one more time. I may have fat fingered something.
ready, I accept the answer, thank you
1 Like
When checked with Defender sample 2 on my version is Ransom:Win32/StopCrypt.CRIS!BTB but the answer gets marked as wrong.