Search
Keyword: usojan.linux.cve20165195.c
This is a Fast SYN Scanner that uses libnet and libpcap , which require root level access. It scans a given netblock on a specified port, using the specified interface with some type of speed setting
This is the detection for the payload related to the Hacking Team Flash zero-day affecting latest version of Flash in Windows, Mac, and Linux. Once this zero-day vulnerability has been successfully
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, does not properly sanitize inputs for JBoss Expression Language (EL) expressions, which allows
/tmp/.rksu_sysi.lock → infection marker Information Theft This Trojan Spy gathers the following data: Download Speed Uptime SSH Port RAM Information CPU Architecture Processor Architecture Number of Processors Linux
This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. However, as of this writing, the said sites are
This Trojan monitors all incoming and outgoing calls. Mobile Malware Routine This Trojan is a file that collects the following information on an affected mobile device: Installed applications on the
Trojan drops the following files: %System Root%\cve\WmOXSshkpQfaLVED.dll (32-bit) → copies and executes {drive letter}:\123456789.exe (detected as Worm.Win32.BLASQUI.A ) as C:\svchost.exe %System Root%\cve
http://SJC1-TE-CMSAP1.sdi.trendnet.org/dumpImages/054201263120.jpeg Reports of highly targeted attacks have dramatically increased in number. Highly targeted attacks differ from traditional threats
* indicates a new version of an existing rule Deep Packet Inspection Rules: Asterisk RTP Protocol 1009953 - Digium Asterisk PJSIP In-Dialog MESSAGE Request Denial-of-Service (CVE-2019-12827) DCERPC
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008679* - Identified BADRABBIT Ransomware Propagation Over SMB 1008327* - Identified Server Suspicious SMB
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008119* - Microsoft Windows Local Security Authority Subsystem Service (LSASS) Denial Of Service
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008119* - Microsoft Windows Local Security Authority Subsystem Service (LSASS) Denial Of Service
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. As of this writing, the said sites are inaccessible. Arrival Details This Trojan arrives
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This malware exploits a vulnerability found in Microsoft Office known as CVE-2017-0199. There are reports that exploits using the said vulnerability are in the wild. A security patch for the
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It takes advantage of software vulnerabilities in certain software to drop malicious
This Exploit arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a