There are multiple indicators for a business to take action when they suspect they are being attacked by this malware. A healthy business will have a honeypot deployed, include good security practices, and keep defenses up to date. Malware is the least of a business’s concerns these days, and Security Onion does a great job of alerting the security team to potential threats so they can proactively investigate and prevent or at least mitigate the damage of an attack.
In this case, the callouts and messages that the malware generated in various sandboxes should be monitored closely over time. Malicious callouts and messages provide valuable information about the way that the malware authors execute and tailor their code to evade user, system, and network defenses.
As for the malware itself, the best approach is prevention and mitigation. This is why all companies should get Security Onion installed, and all users should update their Windows, Linux, and other systems regularly. d2c66b5586