Search
Keyword: JS_EXPLOIT
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be hosted on a website and run when a user
Signup Wizard of Microsoft Windows, which could allow remote code execution. This exploit works if a user opens an .INS or .ISP file located in the same network folder as a specially crafted library file.
Description Name: GENERIC PHP CODE EVALUATION EXPLOIT HTTP Connection . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of ...
Description Name: SMBLORIS Exploit - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for N/A.The host exhibiting this type of network behavior is likely compromised by malware, ...
Description Name: Possible CVE-2014-9222 Request . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavior is l...
Description Name: MAILSPLOIT - SMTP (Request) . This is Trend Micro detection for SMTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavior is like...
Description Name: vCalendar exploit . This is Trend Micro detection for packets passing through SMTP and POP3 network protocols that can be used as Point of Entry. This also indicates a malware infection. Below are some indicators of an infected host...
Description Name: Remote Code Execution - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behav...
Description Name: Possible IE Exploit - HTTP (Response) - Variant 4 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for N/A.The host exhibiting this type of network behavior is likely compro...
Description Name: DLL injection - SMB . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Lateral Movement.The host exhibiting this type of network behavior is likely compromised by malware, ...
This Exploit arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
This Exploit arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
Description Name: Possible CVE-2016-6662 - MySQL Remote Code Execution Exploit - Variant 2 . This is Trend Micro detection for MYSQL network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host ex...
Description Name: IP Camera Remote Code Execution - HTTP (Request) . This is the Trend Micro detection for malicious HTTP network packet that manifest any of the following actions:ExploitThis attack is used for Point of Entry or Lateral Movement
Description Name: Possible LINKSYS Remote Code Execution - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type...
Description Name: Possible CVE-2018-15454 - Cisco ASA and FTD Software DOS - UDP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for N/A.The host exhibiting this type of network b...
Description Name: RIG - Exploit Kit - HTTP(Request) - Variant 3 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for N/A.The host exhibiting this type of network behavior is likely compromise...
Description Name: SQL INJECTION - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavior is l...
Description Name: LINKSYS Remote Code Execution - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of netwo...
Description Name: IE Exploit - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for N/A.The host exhibiting this type of network behavior is likely compromised by malware, or ...