Search
Keyword: bec_suspicious.ers
Description Name: Certificate fields with missing or useless data - SSL - Variant 2 . This is Trend Micro detection for packets passing through HTTPS network protocols that manifests unusual behavior which can be a potential intrusion. Below are some...
Description Name: Certificate fields with missing or useless data - SSL - Variant 4 . This is Trend Micro detection for packets passing through HTTPS network protocols that manifests unusual behavior which can be a potential intrusion. Below are some...
Description Name: Unsuccessful log on to MSSQL service . This is Trend Micro detection for packets passing through MSSQL network protocols that manifests Database Access activities which can be a potential intrusion. Below are some indicators of unus...
Description Name: Phishing domain containing hardcoded IP address - Email . This is Trend Micro detection for packets passing through SMTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators...
Description Name: file dropped on a network administrative share . This is Trend Micro detection for packets passing through SMB network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusua...
Description Name: SMB or SMB2 PE file Upload to non-administrative share folder detected . This is Trend Micro detection for packets passing through SMB2 and SMB network protocols that manifests unusual behavior which can be a potential intrusion. Be...
Description Name: Windows Remote Management Service Detected - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indica...
Description Name: Unauthorized Write MODBUS Request . This is Trend Micro detection for packets passing through MODBUS-TCP and PROTOCOL_42 network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators...
Description Name: Suspicious LNK file transfer detected . This is Trend Micro detection for packets passing through SMTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavi...
Description Name: Possible CVE-2015-0240 - NULL Session in ServerPasswordSet . This is Trend Micro detection for packets passing through SMB network protocols that manifests Exploit activities which can be a potential intrusion. Below are some indica...
Description Name: Unauthorized Other MODBUS Request . This is Trend Micro detection for packets passing through MODBUS-TCP and PROTOCOL_42 network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators...
Description Name: Possible EVASION - FTP (Request) . This is Trend Micro detection for packets passing through FTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Sus...
Description Name: Email/Instant message containing malicious URL . This is Trend Micro detection for packets passing through SMTP, MSN and instant messaging network protocols that manifests unusual behavior which can be a potential intrusion. Below a...
Description Name: Remote CreateService - SMB2 (Request) .
Description Name: APT - SUSPICIOUS CGI DIRECTORY TRAVERSAL - HTTP (REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry.The host exhibiting this type of network behav...
Description Name: Log Files Upload .
Description Name: URL containing hardcoded IP address - Email . This is Trend Micro detection for packets passing through SMTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual ...
Description Name: Suspicious Cgi Arbitrary File Upload - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type o...
Description Name: Suspicious Cgi Directory Traversal - HTTP (Request) - Variant 3 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting t...
Description Name: Compromised site with malicious URL injection . This is Trend Micro detection for packets passing through HTTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusua...