Search
Keyword: Possible_OLGM-23
Description Name: Possible Data Exfiltration - DNS (Response) .
Description Name: Possible PsExec PETYA - Ransomware - SMB . This is Trend Micro detection for packets passing through SMB2 and SMB network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unu...
Description Name: Possible WEBSHELL - HTTP (Request) .
Description Name: Possible EMOTET - HTTP (Response) - Variant 3 .
Description Name: Possible Denial of Service - DNP3 (Request) .
Description Name: Possible Directory Traversal Exploit Attempted - URI Variable/URI Path - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Moveme...
Description Name: Possible WEBSHELL Command - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as Point of Entry or Lateral Movement. This also indicates a malware infection. Below are...
Description Name: Possible ZEUS - HTTP (Request) - Variant 2 . This is the Trend Micro detection for malicious N/A network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control Communication
Description Name: Possible Directory Traversal Exploit Attempted SENSOR - HEADERS - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The ...
administrators have been known to use similar programs to test security and identify possible avenues for intrusion.
Description Name: Possible SSL CVE-2014-0224 CCS Injection - Class 1 . This is Trend Micro detection for TCP, SSL and HTTPS network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting ...
Description Name: Possible FAKEAV - URL request . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Su...
Description Name: Possible HTML Chaffing . This is Trend Micro detection for packets passing through HTTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Suspicious a...
Description Name: Shodan Internet Scan - Possible Exposed Device/Service . This is Trend Micro detection for packets passing through any network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators o...
Description Name: Possible Brute force - Telnet (Response) .
Description Name: Possible ADWIND - Malicious Certificate - HTTPS (Response) .
Description Name: Possible CVE-2019-1224 Server Information Disclosure Exploit - RDP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The hos...
Description Name: Port Sweep - TCP . An attacker may use one or a few hosts to scan a single port on multiple target hosts. This detection is only for a single host and common TCP ports.This is Trend Micro detection for packets passing through TCP ne...
Description Name: Possible CVE-2020-0796 - SERVER COMPRESSION TRANSFORM EXPLOIT - SMB3 (Request) - Variant 2 . This is Trend Micro detection for SMB3 network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Mov...
This ransomware comes from a high volume spam campaign that aims to deliver this to as many users possible. This Ransomware arrives on a system as a file dropped by other malware or as a file