Search

Description Name: CVE-2017-16943 EXIM Remote Code Execution exploit - SMTP (Request) . This is Trend Micro detection for SMTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibitin...

Description Name: CVE-2019-12922 - PHPMYADMIN CSRF - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry.The host exhibiting this type of network behavior is li...

Description Name: Possible SSL CVE-2014-0224 CCS Injection - Class 1 . This is Trend Micro detection for TCP, SSL and HTTPS network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting ...

Description Name: Possible CVE-2019-1224 Server Information Disclosure Exploit - RDP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The hos...

Description Name: BIGIP TMSH Path Exploit - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network be...

Description Name: CVE-2017-0146 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

}al.com/up.php?{random characters} http://{BLOCKED}eybal.com/up.php?{random characters} This report is generated via an automated analysis system. Trojan:Win32/FakeSysdef (Microsoft); Generic FakeAlert.bz (McAfee

http://blablakkoa.{BLOCKED}otemporario.com/publicidade/moduloa.swf This report is generated via an automated analysis system. Trojan:Win32/Danginex (Microsoft); Generic Downloader.x!ffq (McAfee); Trojan.Gen (Symantec

}ngsonar.com/up.php?{random characters} http://{BLOCKED}wideoc.com/up.php?{random characters} This report is generated via an automated analysis system. Trojan:Win32/FakeSysdef (Microsoft); Generic FakeAlert.bz (McAfee

}las.com/up.php?{random characters} http://{BLOCKED}cago.com/up.php?{random characters} This report is generated via an automated analysis system. Trojan:Win32/FakeSysdef (Microsoft); Generic FakeAlert.bz (McAfee);

report is generated via an automated analysis system. TrojanDropper:Win32/VB.DR (Microsoft); Generic Dropper.dc.gen.a (McAfee); Downloader (Symantec); PAK:ExeSax, PAK:PE_Patch.Stolen, Trojan.Win32.VB.avi

{BLOCKED}iloun.com/up.php?{random characters} This report is generated via an automated analysis system. Trojan:Win32/FakeSysdef (Microsoft); Generic FakeAlert.bz (McAfee); UltraDefragFraud!gen11 (Symantec);

automated analysis system. Trojan:Win32/Cleaman.G (Microsoft); Generic Downloader.ml (McAfee); Trojan Horse (Symantec); Trojan.Win32.Menti.mijs (Kaspersky); Trojan.Win32.Cleaman.ba (v) (Sunbelt);

}inam.com/up.php?{random characters} http://{BLOCKED}22866.com/up.php?{random characters} This report is generated via an automated analysis system. Trojan:Win32/FakeSysdef (Microsoft); Generic FakeAlert.bz (McAfee

@ L n This report is generated via an automated analysis system. Trojan:Win32/Sirefef.P (Microsoft); Generic BackDoor!1uk (McAfee); Backdoor.Win32.ZAccess.tlr (Kaspersky); Trojan.Win32.Generic!BT

}inam.com/up.php?{random characters} http://{BLOCKED}22866.com/up.php?{random characters} This report is generated via an automated analysis system. Trojan:Win32/FakeSysdef (Microsoft); Generic FakeAlert.bz (McAfee

}x.com/u/107732960/ldl2.txt http://dl.{BLOCKED}x.com/u/107732960/ldl1.txt This report is generated via an automated analysis system. Trojan:Win32/Msposer.A (Microsoft); Generic Downloader.x!glt (McAfee); Downloader (Symantec);

This report is generated via an automated analysis system. TrojanDownloader:Win32/VB.YAL (Microsoft); Generic Downloader.x!eun (McAfee); Trojan.Gen (Symantec); Trojan-Downloader.Win32.VB.ahjx,

Exploit:Java/CVE-2010-0840(Microsoft), Generic Exploit.f(McAfee), Exploit.Java.CVE-2010(Ikarus)

\SOFTWARE\Microsoft\ Windows\CurrentVersion\Run 1BD557BC = "%Windows%\1BD557BC\svchsot.exe" This report is generated via an automated analysis system. Backdoor:Win32/Morix.B (Microsoft); Generic BackDoor.abf