Search
Keyword: tspy_lineage
This spyware belongs to a multi-component malware. It steals sensitive system information and sends the information to its C&C server. It downloads its component files from certain websites, where it
TSPY_PINCAV.GEK is the Trend Micro detection for the new banking Trojan family known as Tatanga. According to media reports, it is capable of hijacking the user’s banking session to automatically
Installation This spyware drops the following copies of itself into the affected system: %User Temp%\rbking.exe (Note: %User Temp% is the current user's Temp folder, which is usually C:\Documents and
This spyware is capable of collecting information from the infected system and checking if the currently logged user has administrator rights. To get a one-glance comprehensive view of the behavior
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This spyware arrives on a system as a
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes then deletes itself afterward. It modifies
This spyware executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system. It attempts to steal sensitive online banking information,
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes the dropped file(s). As a result, malicious
This Trojan may be dropped by other malware. It may be dropped by other malware. Arrival Details This Trojan may be dropped by other malware. It may be dropped by the following malware:
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It does not have any propagation routine. It does not
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes the initially executed copy of itself.
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This spyware arrives on a system as a
This Trojan overwrites the Master Boot Record (MBR) with new codes. It also contains a TSPY_URELAS.A. The spyware captures screenshots of Korean games being played on the user's system. This may
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes the downloaded files. As a result,
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This spyware arrives on a system as a
This spyware arrives as an attachment to email messages spammed by other malware/grayware or malicious users. Arrival Details This spyware arrives as an attachment to email messages spammed by other
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies the Internet Explorer Zone Settings. As of
This spyware may be unknowingly downloaded by a user while visiting malicious websites. It executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the
This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This spyware arrives on a system as a
This Trojan Spy arrives as an attachment to email messages mass-mailed by other malware/grayware or malicious users. It retrieves specific information from the affected system. Arrival Details This