Search
Keyword: bec_suspicious.ers
Description Name: Certificate fields with missing or useless data - SSL - Variant 5 . This is Trend Micro detection for packets passing through HTTPS network protocols that manifests unusual behavior which can be a potential intrusion. Below are some...
Description Name: Query of a non-trusted domain mail exchanger using the host's DNS A record . This is the Trend Micro detection for malicious N/A network packet
Description Name: Malware-related subject and executable file - Email . This is Trend Micro detection for packets passing through SMTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of ...
Description Name: MySQL service responded with more than 5 MB of data . This is Trend Micro detection for packets passing through MYSQL network protocols that manifests Database Access activities which can be a potential intrusion. Below are some ind...
Description Name: Oracle service responded with more than 5 MB of data . This is Trend Micro detection for packets passing through ORACLE network protocols that manifests Database Access activities which can be a potential intrusion. Below are some i...
Description Name: Remote Delete Job through SMB2 ATSVC Detected . This is Trend Micro detection for packets passing through SMB2 network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusua...
Description Name: TCP Backdoor Agent Request . This is Trend Micro detection for packets passing through TCP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspic...
Description Name: MDMP File Upload .
Description Name: CPL File Transfer detected . This is Trend Micro detection for packets passing through any network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Suspiciou...
Description Name: Successful logon using default Administrator account - RDP . This is Trend Micro detection for packets passing through RDP network protocols that manifests Login Attempt activities which can be a potential intrusion. Below are some ...
Description Name: Trojan FTP request - Type 1 . This is Trend Micro detection for packets passing through FTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspi...
Description Name: Phishing domain containing hardcoded IP address - Email . This is Trend Micro detection for packets passing through SMTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators...
Description Name: Malicious DNS server - DNS (Response) . This is Trend Micro detection for packets passing through DNS network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavio...
Description Name: GZ Inflate in PHP File - HTTP (Response) .
Description Name: Certificate fields with missing or useless data - SSL - Variant 6 . This is Trend Micro detection for packets passing through HTTPS network protocols that manifests unusual behavior which can be a potential intrusion. Below are some...
Description Name: Certificate fields with missing or useless data - SSL - Variant 8 . This is Trend Micro detection for packets passing through HTTPS network protocols that manifests unusual behavior which can be a potential intrusion. Below are some...
Description Name: A privileged user attempted to log on to MySQL service . This is Trend Micro detection for packets passing through MYSQL network protocols that manifests Database Access activities which can be a potential intrusion. Below are some ...
Description Name: A default user attempted to log on to MySQL service . This is Trend Micro detection for packets passing through MYSQL network protocols that manifests Database Access activities which can be a potential intrusion. Below are some ind...
Description Name: Regular account usage . This is Trend Micro detection for packets passing through any network protocols that manifests Login Attempt activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspic...
Description Name: Archive file containing executable file with suspicious extension - Variant 1 . This is Trend Micro detection for packets passing through various network protocols that manifests unusual behavior which can be a potential intrusion. ...