Search

Description Name: CVE-2021-42287 - KDC VULNERABILITY - LDAP(REQUEST) . This is Trend Micro detection for LDAP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of n...

Description Name: OGNL REMOTE CODE EXECUTION EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of n...

Description Name: KASEYA AUTHBYPASS EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network be...

Description Name: POSSIBLE JAVA CLASSLOADER RCE EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type o...

Description Name: CVE-2022-41040 - MS Exchange Server Side Request Forgery Exploit- HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry.The host exhibiting this ...

Description Name: MICROSOFT EXCHANGE POWERSHELL EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type o...

Description Name: CVE-2023-44487 - HTTP2 DDOS EXPLOIT - TCP(REQUEST) . This is Trend Micro detection for TCP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of ne...

Description Name: Micosoft Windows SmartScreen Exploit(ZDI-CAN-23100) - HTTP(Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibit...

Description Name: CVE-2023-22527 - Atlassian OGNL Injection Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibitin...

Description Name: DAMEWARE RCE EXPLOIT - HTTP (REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavi...

Description Name: CVE-2024-4577 - PHP CGI Argument Injection Remote Code Execution - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The...

{1B1276C1-4557-4B55-BC87-4C1A3CFA0D30} %User Temp%\~zm_{1B1276C1-4557-4B55-BC87-4C1A3CFA0D30}\css %User Temp%\~zm_{1B1276C1-4557-4B55-BC87-4C1A3CFA0D30}\images %User Temp%\~zm_{1B1276C1-4557-4B55-BC87-4C1A3CFA0D30}\js %User Temp%\~zm_

This worm arrives via removable drives. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager,

{CB54CEB2-E9F4-48F1-BD02-D4577529646F} %User Temp%\~zm_{CB54CEB2-E9F4-48F1-BD02-D4577529646F}\css %User Temp%\~zm_{CB54CEB2-E9F4-48F1-BD02-D4577529646F}\images %User Temp%\~zm_{CB54CEB2-E9F4-48F1-BD02-D4577529646F}\js %User Temp%\~zm_

This spyware attempts to steal sensitive online banking information, such as user names and passwords. This routine risks the exposure of the user's account information, which may then lead to the

This spyware is injected into all running processes to remain memory resident. It attempts to steal information, such as user names and passwords, used when logging into certain banking or

{A7CAD04F-BF4A-4A07-B95E-95002AC53B7F} %User Temp%\~zm_{A7CAD04F-BF4A-4A07-B95E-95002AC53B7F}\css %User Temp%\~zm_{A7CAD04F-BF4A-4A07-B95E-95002AC53B7F}\images %User Temp%\~zm_{A7CAD04F-BF4A-4A07-B95E-95002AC53B7F}\js %User Temp%\~zm_

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. This is the Trend Micro detection for files that contain

This File infector arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This File infector arrives on a

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes the initially executed copy of itself.