Search

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1004542* - Windows Netlogon Service Denial Of Service (CVE-2010-2742) FTP Server Common 1003784* - FTP Server Restrict Executable ...

* indicates a new version of an existing rule Deep Packet Inspection Rules: File Sharing Applications 1003651* - Windows Live FolderShare (ATT&CK T1102.002, T1567.002) Instant Messenger Applications 1003243* - Yahoo Instant M...

This detection is for web threats related to malicious URLs that contain obfuscated or non-readable strings from webpage content. It is a common attack technique used to hide codes. Example of obfuscated codes is using base64 to encrypt scripts such ...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be dropped by other malware.

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It downloads a file from a certain URL then renames it before storing it in the affected system.

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It downloads a file from a certain URL then renames it before storing it in the affected system.

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services - Client 1009717* - Microsoft Windows PowerShell ISE Filename Parsing Remote Code Execution Vulnerability Over SMB Gogs 1012334 - Gogs...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. As of this writing, the said sites are inaccessible.

This is a Trend Micro heuristic detection for .SWF files with suspicious obfuscated instruction codes. If your Trend Micro product detects a file under this detection name, do not execute the file. Delete it immediately especially if it came from an ...

This is the Trend Micro heuristic detection for packed or obfuscated samples.

Possible_SMPARROTTDSAYXCHEZ is a heuristic detection for a file that has appended obfuscated malicious javascript code.

Another wave of spam mail carrying EMOTET malware is spreading cheer. Compared to an earlier campaign where EMOTET arrived via banking-related emails, this spam wave pretends to be greeting you....

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008225* - Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2017-0145) Intel AMT 1008369* - Intel Active Management Techno...

Possible_SMPARROTTDSAYXCHEZ is a heuristic detection for a file that has appended obfuscated malicious javascript code.

A spam campaign called the Love Letter has been discovered by security researchers. It is used in the delivery and distribution of the Nemty ransomware while disguising itself to app...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Backup Server IBM Tivoli Storage Manager FastBack Server 1007356* - IBM Tivoli Storage Manager FastBack Server Buffer Overflow Vulnerability (CVE-2...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1000735* - Microsoft Windows Server Service Remote Code Execution DCERPC Services - Client 1008300 - Adobe Acrobat DLL Loading Arbitra...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. However, as of this writing, the said sites are inaccessible.

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share DNS Client 1007425 - ISC BIND OpenPGP Ke...