Search
Keyword: MS10-087
This Ransomware may be downloaded by other malware/grayware from remote sites. It connects to certain websites to send and receive information. It encrypts files with specific file extensions. It
This ransomware is believed to be patterned after WALTRIX/CRYPTXXX. It almost has the same routines as the aforementioned ransomware family, save for a few minor differences. To get a one-glance
This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be manually installed
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be dropped by other malware. It uses the Windows
This Ransomware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It encrypts files with specific file extensions. It
Internet Download Manager jDownloader It attempts to steal stored email credentials from the following: Thunderbird Eudora Outlook Express MS Outlook 2002/2003/2007/2010 Google Desktop Google Talk MSN
infector infects the following file types: MS Office Files (.doc, .xls, .ppt, .mdb) Adobe PDF Files (.pdf) Archive Files(.zip, .rar) Program Application Files (.exe) Image Files (.gif, .png, .bmp, .jpg )
This spyware arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
CVE-2009-2512,MS09-063 The Web Services on Devices API (WSDAPI) in Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly process the headers of WSD messages, which allows
CVE-2009-1547,MS09-054 Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted data stream header that
Description Name: CVE-2017-8543 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...
Description Name: CVE-2017-7494 - Remote Code Execution - SMB (Request) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting...
Description Name: CVE-2018-9995 Authentication Bypass Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this...
Description Name: CVE-2017-0147 - Information Disclosure Exploit - SMB (Request) . This is the Trend Micro detection for malicious SMB network packet that manifest any of the following actions:ExploitThis attack is used for Point of Entry or Lateral ...
Description Name: CVE-2017-0145 - Remote Code Execution - SMB (Request) . This is the Trend Micro detection for malicious SMB network packet that manifest any of the following actions:ExploitThis attack is used for Point of Entry or Lateral Movement
Description Name: CVE-2017-5689 - Authentication bypass - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as Point of Entry or Lateral Movement. This also indicates a malware infectio...
Description Name: CVE-2013-2115 - APACHE STRUTS EXPLOIT - HTTP(Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type o...
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
Description Name: CVE-2017-0022 - Microsoft XML Information Disclosure - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry.The host exhibiting this type of n...
Description Name: CVE-2017-3881 - Remote Code Execution - TELNET (Request) . This is Trend Micro detection for TELNET network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this t...