Search
Keyword: HTML_FPSYME
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
following: Generates malicious HTML files with embedded JavaScript (JS) that exploit a vulnerability in Microsoft Internet Explorer (IE). Exploiting the said vulnerability by a malware can allow remote code
This Trojan modifies HTTP traffic on the local network in order to inject a malicious script on the HTML page whenever a user visits a website. It utilizes WinPcap libraries in order to execute the
It may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It adds registry entries to enable its automatic execution at every system startup.
It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes the dropped file(s). As a result, malicious routines
This Trojan may be hosted on a website and run when a user accesses the said website. It accesses websites to download files. This action allows this malware to possibly add other malware on the
This Trojan displays fake alerts that warn users of infection. It also displays fake scanning results of the affected system. It then asks for users to purchase it once scanning is completed. If
This Trojan may be hosted on a website and run when a user accesses the said website. However, as of this writing, the said sites are inaccessible. This is the Trend Micro detection for Web pages
Other Details Based on analysis of the codes, it has the following capabilities: Accesses URL(s) and redirects users to possibly malicious sites upon execution.
This malicious Java Applet may be executed by HTML files hosted on websites. This Trojan executes when a user accesses certain websites where it is hosted. It may be hosted on a website and run when
This malicious JavaScript uses social engineering methods to lure users into performing certain actions that may, directly or indirectly, cause malicious routines to be performed. Specifically, it
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. However, as of this writing, the said sites are inaccessible. Arrival Details This Trojan
This unknown arrives as an attachment to email messages spammed by other malware/grayware or malicious users. Arrival Details This unknown arrives as an attachment to email messages spammed by other
This dialer may be manually installed by a user. Arrival Details This dialer may be manually installed by a user. Installation This dialer drops the following copies of itself into the affected
This Trojan may be unknowingly downloaded by a user while visiting malicious websites. This is the Trend Micro detection for files that contain a malicious script. Arrival Details This Trojan may be
This Trojan may be unknowingly downloaded by a user while visiting malicious websites. It executes when a user accesses certain websites where it is hosted. It may be hosted on a website and run when
This Trojan creates folders where it drops its files. Installation This Trojan drops the following copies of itself into the affected system: %Application Data%\bigad\{filename}.hta (Note:
This Trojan may be unknowingly downloaded by a user while visiting malicious websites. It executes when a user accesses certain websites where it is hosted. It may be hosted on a website and run when
However, as of this writing, the said sites are inaccessible. This is the Trend Micro detection for Web pages that were compromised through the insertion of a certain IFRAME tag. Arrival Details
malicious .JAR file. This malicious Java class file accesses the data parameter in a certain HTML file that executes this file to get the URL where a binary can be downloaded. This Trojan may be dropped by