Search

Description Name: BATLOADER C2 - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Su...

Description Name: CVE-2024-23692 - Rejetto HTTP File Server Command Injection Exploit - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement...

Description Name: CVE-2024-4879 - ServiceNow Template Injection Exploit - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhi...

Description Name: CVE-2024-38112 - MSHTML RCE EXPLOIT - SMB2 (REQUEST) . This is Trend Micro detection for SMB2 network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

performing the following commands via command-line: arp -a dir ""%Program Files"" dir ""%SystemDrive%\"" /s /a ipconfig/all net start net use net user net view net view /domain netstat -ano route print set

arp -a It also searches for the following file types on all drives: *.doc* *.xls* *.ppt* *.pdf *.rtf It then logs the above-mentioned gathered information to the following file: %System Root%\Documents

3fr 7z abu accdb ai arp arw bas bay bdcr bdcu bdd bdp bds blend bpdr bpdu bsdr bsdu c cdr cer config cpp cr2 crt crw cs dbf dbx dcr dd dds der dng doc docm docx dwg dxf dxg eps erf fdb gdb groups gsd

The default value data of the said registry entry is "{User Preferences}" .) NOTES: This Trojan encrypts files with the following extensions: 3fr 7z abu accdb ai arp arw bas bay bdcr bdcu bdd bdp bds

also be educated so that they develop a trained eye for reporting potential threats. Finally, organizations should create data loss prevention (DLP) strategies, since the main goal of a targeted attack

}3.173 Information Theft This backdoor gathers the following data: System info Process info Memory info Version info Hostname Other Details This backdoor does the following: performs DDOS attack floods

manually installed by a user. Other Details This Hacking Tool uses the following user interface: It does the following: It performs a brute-force attack on a list of IPs using a list of usernames and

CVE-2007-0274 Multiple unspecified vulnerabilities in Oracle Database 9.2.0.7 and 10.1.0.5 have unknown impact and attack vectors related to (1) Export and sys.dbms_logrep_util (DB08), and (2) Oracle

vulnerability cannot be exploited automatically through email. For an attack to be successful a user must open an attachment that is sent in an email message." microsoft windows_7 ,microsoft windows_8 -,microsoft

vulnerability cannot be exploited automatically through email. For an attack to be successful a user must open an attachment that is sent in an email message." microsoft windows_7 ,microsoft windows_8 -,microsoft

Description Name: FEBIPOS - HTTP (Request) - Variant 2 . This is Trend Micro detection for packets passing through HTTP network protocol that manifests hacking tool actions that can generally crack or break systems and network security measures. Hack...

Description Name: Downloaded file with spyware-related file name - HTTP (Response) . This is Trend Micro detection for packets passing through HTTP network protocol that manifests hacking tool actions that can generally crack or break systems and net...

Description Name: CVE-2013-2618 Network Weathermap Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The h...

CVE-2008-1813 Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 have unknown impact and remote unauthenticated or authenticated attack

CVE-2006-5335 Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors related to (1) Vuln# DB04 and

Description Name: FEBIPOS - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocol that manifests hacking tool actions that can generally crack or break systems and network security measures. Hacking tools ha...