Search

is generated via an automated analysis system. TrojanDownloader:Win32/Cutwail.AL (Microsoft); Generic Dropper.ez (McAfee); Trojan.Pandex (Symantec); PAK:PE_Patch (Kaspersky);

(Microsoft); Generic Dropper.jk (McAfee); Packed.Generic.237 (Symantec); Trojan-Downloader.Win32.Agent.ckzi (Kaspersky); Trojan-Downloader.Win32.Harnig (Sunbelt); Trojan.Downloader.Loadadv.ACA (FSecure)

%Windows%\Pacuks (Note: %Windows% is the Windows folder, which is usually C:\Windows or C:\WINNT.) This report is generated via an automated analysis system. Trojan:Win32/VB (Microsoft); Generic VB.c (McAfee

report is generated via an automated analysis system. PWS:Win32/Fareit.gen!A (Microsoft); Generic PWS.o (McAfee); Trojan.Zbot (Symantec); Trojan-PSW.Win32.Tepfer.nkpm (Kaspersky);

on Windows 2000, XP, and Server 2003.) This report is generated via an automated analysis system. Backdoor:Win32/Plugx.A (Microsoft); Generic BackDoor!fdp (McAfee); Trojan.Win32.Generic!BT (Sunbelt)

}x.com/u/107732960/ldl2.txt http://dl.{BLOCKED}x.com/u/107732960/ldl1.txt This report is generated via an automated analysis system. Trojan:Win32/Msposer.A (Microsoft); Generic Downloader.x!glt (McAfee); Downloader (Symantec);

files: 019e4884eIYSR.exe This report is generated via an automated analysis system. Virus:Win32/Swog.gen (Microsoft); Generic BackDoor.ze (McAfee); Trojan-Dropper.Win32.Agent.gyrs,

Generic Dropper!1gp (McAfee); Trojan.ADH (Symantec); Trojan.Win32.Generic.pak!cobra (Sunbelt); Gen:Variant.Dropper.3 (FSecure)

Description Name: CVE-2018-8653 MSIE Remote Code Execution - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this t...

Details This Trojan deletes itself after execution. This report is generated via an automated analysis system. TrojanDownloader:Win32/Renos.KR (Microsoft); Generic Dropper.qv (McAfee); Bloodhound.MalPE.B,

following possibly malicious URL: http://www.{BLOCKED}way.org/comp/sem/resources.htm This report is generated via an automated analysis system. Trojan:Win32/Connapts (Microsoft); Generic Downloader.gq (McAfee

" Other Details This spyware deletes itself after execution. This report is generated via an automated analysis system. PWS:Win32/Fareit.gen!I (Microsoft); Generic PWS.o (McAfee);

Description Name: CVE-2017-8543 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

Description Name: CVE-2017-8620 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

Description Name: CVE-2016-0128 - Unencrypted Authentication Level - SAMR (Request) . This is Trend Micro detection for SMB2 and DCE-RPC network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The hos...

Description Name: EASYBEE - Email Server Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of netw...

Description Name: MS17-010 - Remote Code Execution - SMB (Request) - Variant 2 . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this ...

Description Name: SSV-93588 - DiscuszX File Operation Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this...

Description Name: CVE-2017-7494 - Remote Code Execution - SMB (Request) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting...

Description Name: CVE-2018-8278 MS Edge Spoofing Exploit - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this typ...