We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Behavior:Win64/Shaolaod.A
Aliases: No associated aliases
Summary
Behavior:Win64/Shaolaod is a 64-bit behavior-based detection related to Trojan:Win64/Shaolaod. This variant is focused on stealthy persistence mechanisms and execution of fileless malware payloads. Unlike the standard Trojan variant, Behavior:Win64/Shaolaod operates without dropping visible files, relying instead on in-memory execution techniques.
Microsoft Defender Antivirus automatically removes threats as they are detected. However, many infections can leave remnant files and system changes. Updating your antimalware definitions and running a full scan might help address these remnant artifacts.
You can also visit our advanced troubleshooting page or search the Microsoft virus and malware community for more help.
