Search

websites. NOTES: This is Trend Micro's Automated Smart Pattern Proactive Detection for files that manifest similar behavior and characteristics as the following malware: TROJ_AGENT Upon execution, this Trojan

Trend Micro has flagged this Trojan as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. To get a one-glance comprehensive view of the behavior of this

This malware has received attention from independent media sources and/or other security firms. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram

if found: SbieDll.dll (Sandboxie) Once the custom packer completes the system check, it will decrypt and execute the embedded malware. As a result, the behavior of the embedded malware is exhibited on

malicious routines. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown below. NOTES: This file is usually found in the System32 folder and may use any of

The malware tags the affected users' friends in Facebook and posts a message with a malicious link. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram

and/or graphical processing unit (GPU) resources to mine cryptocurrency. This behavior makes the system run abnormally slow. a variant of Linux/CoinMiner.AE (NOD32); Linux/CoinMiner.f (NAI);

Trojan does the following: Malicious behavior only occurs when malware is opened via Google Chrome PUA.JS.Trackware (IKARUS); Trojan.Agent.DQNC (BITDEFENDER); Exploit:PDF/Ticanoti.A (MICROSOFT) Dropped by

This malware is related to the recent BlackEnergy targeted attacks that affected industries in Ukraine. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat

processing unit (CPU) and/or graphical processing unit (GPU) resources to mine cryptocurrency. This behavior makes the system run abnormally slow. HEUR:RiskTool.AndroidOS.Miner.b (Kaspersky), Trojan Horse

This mobile malware is capable of mining specific cryptocurrencies via mobile. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown below. This

}app.com/AutoUpdateWrapperService.cs.svc/webget/CheckObjectsUpdateStatusByPublisher?publisher=BingProtect http://{BLOCKED}ral.{BLOCKED}b.core.windows.net/bingprotect-20141217/bingprotect.msi It then executes the downloaded file. As a result, behavior of the downloaded file is

BKDR_ANDROM BKDR_PUSHDO Once the custom packer completes its decryption routine, it will execute the embedded malware. As a result, the behavior of the embedded malware is exhibited on the affected system.

Description Name: CVE-2022-40684 - FORTINET AUTHBYPASS EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this...

Description Name: CVE-2022-3236 - SOPHOS FIREWALL RCE - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of ...

Description Name: POWERSHELL SERIALIZATION RCE EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

Description Name: CVE-2023-33157 - SHAREPOINT RCE EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type...

Description Name: CVE-2023-29357 - SHAREPOINT PRIVILEGE ESCALATION - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting ...

Description Name: CVE-2023-35078 - Ivanti Endpoint - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of n...

Description Name: CVE-2023-28231 - BUFFER OVERFLOW - MICROSOFT DHCPv6(REQUEST) . This is Trend Micro detection for DHCP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this...