PREVIOUS
PREVIOUS
  • Trojan.MSIL.SUPERNOVA.A

    This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be hosted on a website and run when a user accesses the said website.
    Read more   

  • Backdoor.MSIL.SUNBURST.A

    This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It executes commands from a remote malicious user, effectively compromising the affected system.
    Read more   

  • Backdoor.MSIL.BLADABINDI.THA

    Cybercriminals used this malware bundled with legitimate installation copies of the VPN software known as Windscribe. Note that these copies are hosted from fraudulent sources.
    Read more   

  • IoT.Linux.MIRAI.VWISI

    This new Mirai variant exploits CVE-2020-10173, a vulnerability in Comtrend VR-3033 routers. Similar to earlier variants, this Mirai variant uses telnet and SSH brute-forcing techniques to attack vulnerable devices.
    Read more   

  • Backdoor.Win32.DEVILSHADOW.THEAABO

    Cybercriminals take advantage of the popularity of the Zoom messaging app. This backdoor is found in a fake Zoom installer.
    Read more   

  • Trojan.JS.MANAGEX.A

    This MANAGEX variant is a modular adware that is able to gather important information as a browser extension.This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
    Read more   

  • Trojan.Win32.MOOZ.THCCABO

    This AutoIt-compiled malware downloads a coinminer in affected systems. This malware is distributed by cybercriminals by bundling it with a legitimate installer of the Zoom communication app.
    Read more   

  • Trojan.PS1.POWLOAD.JKP

    This POWLOAD variant is seen distributed via spam. The spam campaign is in Italian and lures users to click by using COVID-19 in its subject.
    Read more   

  • Backdoor.SH.SHELLBOT.AA

    This backdoor comes bundled with a Monero miner, both spread by a botnet. The techniques employed are reminiscent of the Outlaw hacking group that Trend Micro reported in November 2018.
    Read more   

  • Backdoor.Win64.ANCHOR.A

    This is the Trend Micro detection for the backdoor installed by the PowerTrick post-exploitation toolkit believed to be developed by creators of Trickbot.This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
    Read more   

PREVIOUS
PREVIOUS