This malware only affects systems on Windows 2003. The vulnerability it exploits will not be patched.
Minimum Scan Engine: 9.850
FIRST VSAPI PATTERN FILE: 13.340.08
FIRST VSAPI PATTERN DATE: 14 Apr 2017
VSAPI OPR PATTERN File: 13.341.00
VSAPI OPR PATTERN Date: 15 Apr 2017
Before doing any scans, Windows XP, Windows Vista, and Windows 7 users must disable System Restore to allow full scanning of their computers.
Scan your computer with your Trend Micro product to delete files detected as TROJ_EXCAN.A. If the detected files have already been cleaned, deleted, or quarantined by your Trend Micro product, no further step is required. You may opt to simply delete the quarantined files. Please check the following Trend Micro Support pages for more information: