Search
Keyword: denial of service
* indicates a new version of an existing rule Deep Packet Inspection Rules: Web Application Common 1008530 - ImageMagick WritePTIFImage Denial Of Service Vulnerability (CVE-2017-11640) - 1 Web Client Common 1008645 - Adobe A...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008525 - SMBLoris Denial Of Service Vulnerability Web Application PHP Based 1008516 - PHP Buffer Over-Read Into Uninitialized Memory ...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008119* - Microsoft Windows Local Security Authority Subsystem Service (LSASS) Denial Of Service Vulnerability (CVE-2017-0004) DHC...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1002937* - Integer Overflow In IPP Service Vulnerability 1003824* - License Logging Server Heap Overflow Vulnerability 1004600* - M...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007134* - Batch File Uploaded On Network Share (ATT&CK T1021.002, T1204.002) 1007064* - Executable File Uploaded On System32 Folder Thr...
* indicates a new version of an existing rule Deep Packet Inspection Rules: IPSec-IKE 1011669 - Microsoft Windows Internet Key Exchange (IKE) Protocol Extensions Denial Of Service Vulnerability (CVE-2023-21547) SNMP Server 1...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DHCP Server 1008591* - FreeRADIUS Integer Underflow Out Of Bounds Read Vulnerability (CVE-2017-10986) SolarWinds Dameware Mini Remote Control 101007...
* indicates a new version of an existing rule Deep Packet Inspection Rules: IPSec-IKE 1011801* - Microsoft Windows Internet Key Exchange (IKE) Protocol Extensions Denial Of Service Vulnerability (CVE-2023-21758) SNMP Serve...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1003984* - SMB NTLM Authentication Lack Of Entropy Vulnerability DCERPC Services - Client 1008577 - Microsoft Visio OLE DLL Loading ...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DHCPv6 Server 1008668* - Dnsmasq Information Leak Vulnerability (CVE-2017-14494) DNS Client 1008666* - Microsoft Windows DNSAPI Remote Code Execution ...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share 1008224* - Microsoft Windows SMB Remote Co...
* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1001839* - Restrict Attempt To Enumerate Windows User Accounts (ATT&CK T1087) DNS Client 1011122* - Zoom Client Marketplace Informa...
* indicates a new version of an existing rule Deep Packet Inspection Rules: Advanced Message Queuing Protocol (AMQP) 1011585* - SolarWinds Network Performance Monitor Insecure Deserialization Vulnerabilities (CVE-2022-36957 and...
* indicates a new version of an existing rule Deep Packet Inspection Rules: Microsoft Office 1008441 - Microsoft Office Remote Code Execution Vulnerability (CVE-2017-8509) 1008442 - Microsoft Office Remote Code Execution Vulner...
* indicates a new version of an existing rule Deep Packet Inspection Rules: Application Control For File Sharing 1003682* - Application Control For Ares Galaxy DNS Server 1007972 - ISC BIND Assertion Failure Denial Of Service...
This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
* indicates a new version of an existing rule Deep Packet Inspection Rules: Apache Solr RMI 1010116* - Apache Solr Remote Code Execution Vulnerability (CVE-2019-12409) DNS Server 1010118* - ISC BIND 'EDNS0' Key-Tag Memory Le...
* indicates a new version of an existing rule Deep Packet Inspection Rules: Redis Server 1011812 - Redis Denial Of Service Vulnerability (CVE-2022-36021) Unix Samba 1011796* - Linux Kernel KSMBD Denial of Service Vulnerability ...
This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to a website to send and receive information. It deletes itself after execution.