Search

Description Name: CVE-2017-3248 - UnicastRef Insecure Deserialization . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of ...

Description Name: CVE-2018-7602 - Remote Code Execution - HTTP (Request) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibitin...

Description Name: BMP exploit . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavior is likely compromised b...

Description Name: CVE-2017-0144 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB2 and SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting thi...

Description Name: MS17-010 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of netw...

Description Name: CVE-2017-12615 - APACHE TOMCAT Remote Code Execution via JSP Upload - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement....

Description Name: MS17-010 - Remote Code Execution - SMB (Request) - Variant 2 . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this ...

Description Name: RIG - Exploit Kit - HTTP (Request) - Variant 5 . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as Point of Entry. This also indicates a malware infection. Below are some indicators...

Description Name: CVE-2018-9206 - JQuery Arbitrary File Upload Exploit Attempt - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for N/A.The host exhibiting this type of netwo...

Description Name: JPEG exploit . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavior is likely compromised ...

Description Name: ANI exploit . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavior is likely compromised b...

This Trojan may arrive bundled with malware packages as a malware component. It may be hosted on a website and run when a user accesses the said website. Arrival Details This Trojan may arrive

HKEY_CURRENT_USER\Software\Microsoft\ Office\12.0\Word\ Resiliency Other Details This Trojan is a zero-day exploit for the following vulnerability: CVE-2014-1761 For workarounds on the aforementioned vulnerability,

This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded

This Trojan may be hosted on a website and run when a user accesses the said website. It executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the

This malware exploits a zero-day vulnerability in some versions of Internet Explorer. Once successfully exploited, it drops a backdoor on the vulnerable computer. As a result, routines of the

This Trojan may be hosted on a website and run when a user accesses the said website. It executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the

This Trojan arrives as a component bundled with malware/grayware packages. It may be hosted on a website and run when a user accesses the said website. It requires its main component to successfully

This Trojan may arrive bundled with malware packages as a malware component. It may be hosted on a website and run when a user accesses the said website. It requires its main component to

This Trojan may arrive bundled with malware packages as a malware component. It may be hosted on a website and run when a user accesses the said website. It requires its main component to