Search

Description Name: APT - SEDNIT - HTTP (Request) - Variant 3 . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as Command and Control Communication. This also indicates a malware infection. Below are s...

Description Name: APT - NJRAT - TCP . This is Trend Micro detection for packets passing through TCP network protocols that can be used as Command and Control Communication. This also indicates a malware infection. Below are some indicators of an infe...

Description Name: APT - SEDNIT - HTTP (Request) - Variant 4 . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as Command and Control Communication. This also indicates a malware infection. Below are s...

Description Name: APT - IXESHE - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as Command and Control Communication. This also indicates a malware infection. Below are some indicato...

Description Name: REDLEAVES - TCP (Request) . This is the Trend Micro detection for malicious TCP network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control CommunicationRelated Malware: TROJ_INJECTR...

Description Name: DYREZA - HTTP (Request) - Variant 2 . This is the Trend Micro detection for malicious HTTP network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control CommunicationRelated Malware: T...

Description Name: URSNIF - HTTP (Request) - Variant 5 . This is the Trend Micro detection for malicious HTTP network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control CommunicationRelated Malware: T...

Description Name: AGENT - HTTP (Request) - Variant 4 . This is the Trend Micro detection for malicious HTTP network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control Communication

Description Name: ZBOT - HTTP (Request) - Variant 4 . This is the Trend Micro detection for malicious HTTP network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control Communication

Description Name: WATERHOLE - HTTP (Request) . This is the Trend Micro detection for malicious HTTP network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control CommunicationRelated Malware: JS_WATERHO...

following commands from a remote malicious user: StartHTTP - starts an HTTP DDoS attack StartSlowloris - starts a Slowloris DDoS attack StartTCP - starts a TCP DDoS attack StartSSYN - starts SYN DDoS attack

(STOP SPEEDTEST) - Stops speedtest (STOP SYN) - Stops a SYN Flood (STOP UDP) - Stops UDP Flooding (SYN) - Sends a SYN Flood (UDP) - Starts UDP Flooding (VERSION) - Print Version Other Details This

Description Name: CRAM-MD5 Authentication Buffer Overflow - IMAP4 (Request) . This is the Trend Micro detection for malicious IMAP4 network packet that manifest any of the following actions:ExploitThis attack is used for Point of Entry

backdoor executes the following commands from a remote malicious user: StartHTTP - starts an HTTP DDoS attack StartTCP - starts a TCP DDoS attack StopHTTPDDoS - stops an HTTP DDoS attack StopTCPDDoS - stops

Description Name: Successful log on to TELNET . This is the Trend Micro detection for malicious TELNET network packet that manifest any of the following actions:Login AttemptThis attack is used for Lateral Movement

Description Name: ASPXSpy - Hacking tool - HTTP (Response) . This is the Trend Micro detection for malicious N/A network packet that manifest any of the following actions:Hack ToolThis attack is used for Command and Control Communication

ICS was once again thrust into the headlines with the discovery of a campaign targeting certain companies in the energy sector. The discovery of this attack highlights the fact that ICS/SCADA systems

Description Name: CVE-2017-0145 - Remote Code Execution - SMB (Request) . This is the Trend Micro detection for malicious SMB network packet that manifest any of the following actions:ExploitThis attack is used for Point of Entry or Lateral Movement

Description Name: IP Camera Remote Code Execution - HTTP (Request) . This is the Trend Micro detection for malicious HTTP network packet that manifest any of the following actions:ExploitThis attack is used for Point of Entry or Lateral Movement

Description Name: Metasploit(Payload) - Reverse NETCAT TCP Response . This is the Trend Micro detection for malicious TCP network packet that manifest any of the following actions:CallbackThis attack is used for Command and Control Communication