Description Name: SMOMINRU - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as Command and Control Communication. This also indicates a malware infection. Below are some indicators o...

MAL_MORTO1

This is the Trend Micro heuristic detection for suspicious files manifest behavior similar to specific malware. Heuristic Detection This is the Trend Micro heuristic detection for suspicious files

MAL_MORTO2

This is the Trend Micro heuristic detection for suspicious files manifest behavior similar to specific malware. Heuristic Detection This is the Trend Micro heuristic detection for suspicious files

DDI-RULE-1415

Description Name: APT - Possible POISONIVY - TCP (Request) .

DDI-RULE-1303

Description Name: APT - Possible BLYPT - HTTP (Request) .

DDI-RULE-2616

Description Name: Suspicious CWS Flash - HTTP (Response) .

DDI-RULE-2620

Description Name: Suspicious Executable File Download - HTTP (Response) .

MAL_CRYPT

This is the Trend Micro heuristic detection for suspicious files that manifest similar behavior and characteristics as the following malware: TROJ_DNSCHANG TROJ_GAMETH Heuristic Detection This is the

CaseID-2412

Risk type: MALWARE Threat Type: Malicious Behavior Confidence Level: High Severity: High(Inbound) Status: Enable Event Class: Callback Event Subclass: Bot Behavior Indicator: Callback APT-related: NO APT

DDI-RULE-2445

Description Name: Suspicious file rename - SMB2 (Request) .

DDI-RULE-1021

Description Name: APT - Possible POISONIVY - TCP (Response) - Variant 2 .

Search

Resources

Support

About Trend

Country Headquarters

Search

Resources

Support

About Trend

Country Headquarters

The Americas

Middle East & Africa

Europe

Asia & Pacific