Search
Keyword: usoj_medfos.jet
288 Total Search |
Showing Results : 1 - 20
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes then deletes itself afterward. However, as
http://SJC1-TE-CMSAP1.sdi.trendnet.org/dumpImages/189201345828.gif One of the prevalent exploit kits in the cybercrime today is Blackhole Exploit Kit (BHEK), which used spammed message that looks
This malware is related to the Blackhole Exploit kit spam campaign on July 2013. This campaign used the birth of the Royal Baby and the controversy of the movie Ender's Game as lures. Users affected
This worm arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
keys: HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ {random key} HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Brazos volatile counter HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Temporary (volatile) Jet DSN for process 0x7d0 Thread 0x1a0
HKEY_CURRENT_USER\SOFTWARE\Microsoft\ Wbem\WMIC HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ {random key} HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Brazos volatile counter HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Temporary (volatile) Jet DSN
Windows 2000, XP, and Server 2003.) It adds the following registry keys: HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Temporary (volatile) Jet DSN for process 0x264 Thread 0x4b8 DBC 0x366104 Jet HKEY_LOCAL_MACHINE
This Worm arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Worm arrives on a system as a file
This Worm arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Worm arrives on a system as a file
Filters HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ {random key} HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Brazos volatile counter HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\ ODBC\Temporary (volatile) Jet DSN for process 0xaf0
\SOFTWARE\ODBC\ {random key} HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Brazos volatile counter HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ Temporary (volatile) Jet DSN for process 0x7b4 Thread 0x7b8 DBC 0xa142f4 Jet\Engines
This Ransomware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details
CVE-2020-1051 - Jet Database Engine Remote Code Execution Vulnerability Risk Rating: Important This remote code execution vulnerability exists in the improper handling of objects in memory by the Windows Jet
HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ ODBC.INI\SuperMoneyCmp HKEY_LOCAL_MACHINE\SOFTWARE\ODBC\ ODBC.INI\SuperMoneyCmp\Engines\ Jet HKEY_LOCAL_MACHINE\Software\Microsoft\ Windows\CurrentVersion\App Paths\ SuperMoney2.exe
\DomainProfile DoNotAllowExceptions = "0" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Jet\4.0\Engines SandBoxMode = "2" HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ Services\Ms IAP Service ImagePath = "%System%\infosecure
following registry entries: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Jet\4.0\Engines SandBoxMode = "2" Dropping Routine This Trojan drops the following files: %Program Files%\thnuderservice\thnuderservice.chm
way in which the Windows Graphics Component handles objects in memory. CVE-2017-8718 - Microsoft JET Database Engine Remote Code Execution Vulnerability Risk Rating: Important A buffer overflow
CVE-2007-6026,MS08-028 Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers
exploit is hosted. CVE-2019-1359 - Jet Database Engine Remote Code Execution Vulnerability Risk Rating: Critical This remote code execution vulnerability exists in the improper handling of objects by the
1001201* - Microsoft Office Jet DataBase Engine MDB File Parsing Buffer Overflow. 1001268* - Microsoft Outlook VML Buffer Overflow. 1001207* - Microsoft PowerPoint Malformed Data Record Code Execution.