Trojan.Downloader.Mshta.Generic
ThreatDown is now the name of the Malwarebytes line of business products. References to Malwarebytes below reflect the amazing technology used to first identify the threat.
Short bio
Trojan.Downloader.Mshta.Generic is Malwarebytes’ generic detection name for Trojan downloaders that are or drop Microsoft HTML Application Host (mshta) to get the payload.
Type of infection
Downloaders are often the first stage of infection from attacks from an exploit kit or a malicious email attachment. They are usually small and pre-programmed to download and start other malicious files.
Malicious behavior
Users may see an unexpected browser window, which is downloading a malicious payload in the background.
Protection
Malwarebytes/ThreatDown products will block Trojan.Downloader.Mshta.Generic.
Add an exclusion
Should users wish to keep this program and exclude it from being detected in future scans, they can add the program to the exclusions list. Here’s how to do it.
- Open Malwarebytes for Windows.
- Click the Detection History
- Click the Allow List
- To add an item to the Allow List, click Add.
- Select the exclusion type Allow a file or folder and use the Select a folder button to select the main folder for the software that you wish to keep.
- Repeat this for any secondary files or folder(s) that belong to the software.
If you want to allow the program to connect to the Internet, for example to fetch updates, also add an exclusion of the type Allow an application to connect to the internet and use the Browse button to select the file you wish to grant access.