Search
Keyword: PDF_FAREIT
the following possibly malicious URL: http://{BLOCKED}gn.co.nf/ http://{BLOCKED}imicro.sitey.me It does the following: When users click the link on the PDF file, it accesses the said URL which is a
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. However, as of this writing, the said sites are inaccessible. Arrival Details This Trojan
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
}openbowls.com/wp-content/languages/plugins/d523hl.htm http://www.{BLOCKED}openbowls.com/wp-content/languages/plugins/d523hl.htm NOTES: Once the link in the PDF is clicked, it will try to connect to the possibly malicious URL.
file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. NOTES: This is the Trend Micro detection for PDF files that are used to gather user information
}owtie.ru/system/logs/wp-verify.php It does the following: When users click the link on the PDF file, it accesses the said URL which is a phishing site, asking to fill out data to be stolen. Via email Steals information
This Trojan arrives as attachment to mass-mailed email messages. Arrival Details This Trojan arrives as attachment to mass-mailed email messages. NOTES: This malware opens Internet Explorer and goes
presented with a fake Premium Adobe PDF Document tricking users to click on the malicious link http://{BLOCKED}l.com/{BLOCKED}ov . However, as of this writing, the said site is inaccessible. NOTES: It does
This Trojan arrives as attachment to mass-mailed email messages. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
malware/grayware or malicious users. Other Details This Trojan connects to the following possibly malicious URL: http://accessoutlookweb.{BLOCKED}y.me It does the following: When users click the link on the PDF
malware/grayware or malicious users. NOTES: It asks the user to click on the link in the PDF to view document info and tracking details. Upon clicking the link, connects to the following possibly malicious URL:
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
BKDR_ANDROM.DCD %User Temp%\{random numbers}.pdf - decoy PDF (Note: %User Temp% is the user's temporary folder, where it usually is C:\Documents and Settings\{user name}\Local Settings\Temp on Windows 2000, Windows
dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. NOTES: This is the Trend Micro detection for PDF files that presents the user a fake message tricking
Trend Micro detection for: PDF files that presents the user a fake message tricking them to click embedded link. NOTES: Upon execution, the users are presented with a fake message (see below) tricking
This Trojan arrives as attachment to mass-mailed email messages. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
However, as of this writing, the said sites are inaccessible. Other Details This Trojan connects to the following possibly malicious URL: http://{BLOCKED}tsecurityblog.com/sikism.htm http://www.
However, as of this writing, the said sites are inaccessible. Other Details This Trojan connects to the following possibly malicious URL: http://{BLOCKED}thix.co.id/cache/new/secure/login/ However,