Search
Keyword: os2first
This Trojan Spy arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan Spy arrives on a system
LDAP Server ID = "1" HKEY_CURRENT_USER\Software\Microsoft\ Internet Account Manager\Accounts\VeriSign LDAP Server ID = "2" HKEY_CURRENT_USER\Software\Microsoft\ Internet Account Manager\Accounts\WhoWhere
LDAP Server ID = "1" HKEY_CURRENT_USER\Software\Microsoft\ Internet Account Manager\Accounts\VeriSign LDAP Server ID = "2" HKEY_CURRENT_USER\Software\Microsoft\ Internet Account Manager\Accounts\WhoWhere
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This spyware arrives on a system as a
system's memory: notepad.exe chrome.exe firefox.exe Information Theft This spyware gathers the following data: keybordlogs clipboardlogs computername OS Version Default Browser Plugins Installed AV Other
Internet Explorer Zone Settings. Other Details This backdoor gathers the following information and reports it to its servers: Local IP Mac Address Size of RAM Country OS Name OS Version If User is Admin Java
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies the Internet Explorer Zone Settings. Arrival
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It arrives as a component
CVE-2014-8439,APSB14-26,APSB14-22 Adobe Flash Player is prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the
CVE-2016-1718 This vulnerability affects OS X below 10.11.3. It occurs by sending two special requests to IOAcceleratorFamily2 module. As such, an array overflow happens in method
This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It arrives as a component
This Trojan Spy arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan Spy arrives on a system
This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to certain
following data: Hostname Username OS Version Service Configurations Other Details This Ransomware does the following: It uses wevtutil.exe to clear event logs of each segment of its malicious routine. Before
\CurrentControlSet\ Services\raswmi Type = "10" HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\raswmi Start = "2" HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\raswmi ImagePath = "%SystemRoot%\System32
\CurrentControlSet\ Services\raswmi Type = "10" HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\raswmi Start = "2" HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\raswmi ImagePath = "%SystemRoot%\System32
version and generated hash}&session={value}&v={value}&name={string}&mj={Major OS version}&mi={Minor OS version}&pt={OS product type}&b={OS build}&dc={32/64}&av={value} Other Details This spyware checks for
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It acts as a Browser Helper Object (BHO) that monitors
This spyware may also use a purely random set of characters as its file name. It connects to certain servers to report system infection and send information such as OS version and IP address. This