Search

Description Name: AGENT - HTTP (Request) - Variant 21 . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behav...

Description Name: File renamed - LOCKY - Ransomware - SMB (Request) . This is the Trend Micro detection for malicious SMB2,SMB network packet that manifest any of the following actions:MalwareThis attack is used for Lateral Movement

Description Name: Non-IEC-104 Communication Request .

Description Name: Ghost WebShell - HTTP (Request) .

Description Name: Possible IE Exploit - HTTP (Response) - Variant 3 .

Description Name: GZ File requested from root directory - HTTP (Request) .

Description Name: Unauthorized Read Request - DNP3 (Request) .

Description Name: DOC File downloaded in root directory - HTTP (Response) .

Description Name: Possible PUT Header Scanner - HTTP (Response) .

Description Name: VBNA FTP request . This is Trend Micro detection for packets passing through FTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspicious activ...

Description Name: Packed executable file - IM . This is Trend Micro detection for packets passing through MSN and instant messaging network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unu...

Description Name: GUMBLAR - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspici...

Description Name: SALITY - SMB . This is Trend Micro detection for packets passing through SMB network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspicious activity ...

Description Name: Possible FAKEAV - URL request . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Su...

Description Name: Meta tag redirecting to executable file - HTTP (Response) . This is Trend Micro detection for packets passing through HTTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicato...

Description Name: ActiveX codebase pushing executable - HTTP (Response) . This is Trend Micro detection for packets passing through HTTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators o...

Description Name: LETSENCRYPT SSL CERTIFICATE - HTTP (Response) .

Description Name: APT - KSDOOR - HTTP (REQUEST) .

Description Name: DEMO RULE - DNS (Request) . This is Trend Micro detection for packets passing through DNS network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspici...

Description Name: Remote Enumerate Job through SMB protocol detected .