Search
Keyword: link
This Trojan may be dropped by other malware.
This spammed message looks personalized since it uses the recipient's name in the subject line. It then invites users to click on a link that directs to a pharmaceutical site now blocked by Trend Micro. A series of numbers are spl...
This spammed message targets sexually deviant recipients who would be interested in the sexual imagery formed by the message. It invites to click on a photo link, which redirects to a fake...
From: "Tiara Shoals" <TiaraShoals1525@ukrtel.net>Subject: Do not shell out to upgrade to an iphone 4!I just found out that on this we...
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users.It deletes the initially executed copy of itself.
Windows
Arrival DetailsThis backdoor may be downloaded from the following remote site(s): http://www.{BLOCKED}e.com.br/api/get.php?id=dmluY2Vfa2Vhcm5zQHRyZW5kbWljcm8uY29t InstallationThis backdoor injects threads into the followi...
Recently, there has been a spike in incidents involving information-stealing malware, commonly known as info-stealers, which uses cloud sharing services to attack victims. Threat actors have been le...
Windows Mail in Microsoft Windows Vista might allow user-assisted remote attackers to execute certain programs via a link to a (1) local file or (2) UNC share pathname in which there is a dire...
This spammed message claims to come from the Bank of America notifying of a fund transfer request. It displays a link to the bank's site which redirects to a phishing site when clicked. It hides i...
This spammed message says that the recipient was sent an e-card to be accessed on the link supplied. However, users are redirected to a Blackhole Exploit page, which can lead to the download of malicious files on use...
We spotted a spammed message that purports as a notification from Facebook. It informs users that their accounts have been blocked due to a suspicious activity. They are also required to click a link to supposedly activate their...
This spammed message is written in German and provides the users with a link that leads to an online pharmaceutical website, http://www.{BLOCKED}potheke-viagra.de. The bottom part of the email is filled with salad words relate...
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users.However, as of this writing, the said sites are inaccessible.
Directory traversal vulnerability in the CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to load and execute arbitrary local DLL code via a .. (dot dot...
From: Susan, DonnaSubject: New Year Ecard Notification, Happy New Year!Susan mailed to you an electronic New Year greeting card. To view your customized greeting card, simply click on the following internet location: http:// {BLO...
Trendlabs engineers received samples of this email spam claiming to be from Key Total Treasury, a US-based online banking website. It is detected to be involved with Blackhole Exploit Kit attacks. ...
This spammed message informs users that starting on June 8, all online pharmacy websites will need doctor prescriptions. It also encourages users to place orders on various medical products that Pharmacy Express o...
A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x before 1.5.0.10, and SeaMonkey 1.1 before 1.1.1 and 1.0 before 1.0.8, allows remote attackers to execute arbitrary Jav...
A vulnerability exists in Windows Media Center that could allow remote code execution if Windows Media Center opens a specially crafted Media Center link (.mcl) file t...