Search

This Ransomware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It drops files as ransom note. Arrival Details This

Description Name: CVE-2013-2618 Network Weathermap Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The h...

Description Name: CVE-2017-8759 - SOAP WSDL Command Injection Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibit...

Description Name: CVE-2014-3120 - ElasticSearch Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host...

Description Name: CVE-2019-1182 Chopper Compression Overflow Remote Code Execution - RDP (Request) - Variant 2 . This is Trend Micro detection for RDP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Mo...

Description Name: CVE-2014-6332 - OLE Array Remote Code Execution HTTP Exploit . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this...

Description Name: CVE-2015-5477 ISC BIND DNS Query . This is Trend Micro detection for MYSQL network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network behavior i...

Description Name: CVE-2014-6287 Rejetto HttpFileServer RCE Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting...

Description Name: CVE-2019-20224 - Pandora FMS 7.0NG Authenticated Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Latera...

Description Name: CVE-2015-4335 REDIS Eval LUA Sandbox Bypass Exploit - TCP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiti...

Description Name: CVE-2017-9805 - ApacheStruts XStream RCE Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting...

Description Name: CVE-2018-8373 VBScript Use-After-Free Exploit - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting t...

Description Name: CVE-2019-7238 Nexus Repository Manager RCE Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiti...

Description Name: CVE-2019-1181 Chopper Compression Overflow Remote Code Execution - RDP (Request) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral M...

Description Name: Possible CVE-2020-0796 - SERVER COMPRESSION TRANSFORM EXPLOIT - SMB3 (Request) - Variant 2 . This is Trend Micro detection for SMB3 network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Mov...

Description Name: CVE-2017-7269 - WebDAV Buffer Overflow - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type...

Description Name: CVE-2019-10149 Exim Remote Code Execution Exploit - SMTP (Request) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The ho...

Description Name: CVE-2020-0618 - SQL Server Reporting Services Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral M...

Common 1009454 - Microsoft Windows MsiAdvertiseProduct ReadFile Unauthorized Access Vulnerability Web Server Common 1009450 - Kubernetes API Proxy Request Handling Privilege Escalation Vulnerability

Description Name: CVE-2021-26855 - Exchange Server Side Request Forgery Exploit - HTTP (REQUEST) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Mov...