Robuta

Trend Micro researchers discovered this vulnerability in Android devices that could potentially allow attackers to perform Denial of Service (DoS) attacks once...

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It connects to...

FAREIT was discovered in 2012 and has been undergoing changes to bypass anti-virus detection. It is now one of the most successful information stealers...

This is the Trend Micro detection for shortcut files that attempts to exploit a vulnerablity in Windows Shell that could allow arbitrary commands to be...

This Coinminer arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This is a file infected by PE_FUJACKS.RC-O and PE_FUJACKS.

This new Mirai variant uses a total of 13 different exploits, almost all of which have been used in previous Mirai-related attacks. It has backdoor and...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:Ivanti Endpoint Manager1012214 - Ivanti Endpoint Manager SQL Injection...

This Coinminer arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This ransomware is delivered via the Magnitude exploit kit exploiting the Adobe Flash Player vulnerability CVE-2016-1019.To get a one-glance comprehensive view...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.However, as of...

This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host...

PLUGX is a remote access tool (RAT) used in targeted attacks aimed toward government-related institutions and key industries. It was utilized the same way as...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It executes the...

This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other...

This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites.

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This malware has received attention from independent media sources and/or other security firms.To get a one-glance comprehensive view of the behavior of this...

This Coinminer arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It uses the...

This Trojan has received attention from independent media sources and/or other security firms.To get a one-glance comprehensive view of the behavior of this...

This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting...

This malware is involved in the DRIDEX malspam campaign that was spotted in early November 2014. It purports itself as a word document with malicious macro...

Microsoft addresses vulnerabilities in its May security bulletin. Trend Micro Deep Security covers the following: CVE-2018-8174 - Windows VBScript Engine...

Trend Micro has flagged this file infector as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. To get a...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Trojan Spy arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

Cybercriminals take advantage of the popularity of the Zoom messaging app. This backdoor is found in a fake Zoom installer.

This malware family refers to variants consisting of backdoors that are tied to the ANDROMEDA botnet. The botnet was first spotted in late 2011.

The malware dropper, detected as BKDR_REMOSH.SML is responsible for assigning what service name the malware will use by querying certain registry entry to...

This is the Trend Micro detection for malicious apps that have information theft routines.This adware may be manually installed by a user.

This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host...

This worm arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

Microsoft Internet Explorer is prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be hosted...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:DCERPC Services - Client1012456 - Microsoft Windows SMB Client Remote Code Execution...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It connects to...

The movie Ender's Game, based on a novel of the same name, did not escape cybercriminals' sights. Trend Micro researchers spotted Blackhole Exploit Kit spam...

This worm arrives by connecting affected removable drives to a system. It arrives on a system as a file dropped by other malware or as a file downloaded...

This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting...

This Ransomware may be downloaded by other malware/grayware/spyware from remote sites.

This security update resolves six vulnerabilities in Internet Explorer that were reported privately. The most serious vulnerabilities may allow remote code...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

While the pandemic continues to affect millions of lives, spammers have continued to use COVID-19 as subject to lure recipients. In a campaign we have observed...

This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting...

This file infector arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.However,...

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It connects to...

Trickbot is a banking trojan used in attacks usually against small- and medium-sized businesses. It is designed to access online accounts, especially bank...

This Trojan Spy may be dropped by other malware.It attempts to steal information, such as user names and passwords, used when logging into certain banking or...

This threat, dubbed as BitCrypt, is a ransomware that steals funds from various cryptocurrency wallets. To get a one-glance comprehensive view of the behavior...

This malware exploits an Adobe Flash zero-day vulnerability. When a system is exploited successfully, it allows a remote user to execute arbitrary code on the...

This is Trend Micro's detection for the SYS files dropped by WORM_STUXNET.A.

This is the Trend Micro generic detection for potentially unwanted applications (PUAs) that are installed in your computers or devices. This application is...

We recently received phishing mails that take advantage of the 2015 tax season in the United States as a social engineering lure to target unwitting users. The...

Trend Micro received a sample email notification supposedly from the Federal Ministry of Finance of Malaysia. In the said message, recipients are informed that...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:CyberPanel1012377* - CyberPanel Command Injection Vulnerability...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:Ivanti Endpoint Manager1012214 - Ivanti Endpoint Manager SQL Injection...

This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It deletes...

This is the Trend Micro detection for a hacking tool that can be used to launch a denial of service attack by exploiting the Remote Desktop Protocol...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It executes the...

Black Friday is one of the highly anticipated events in the United States, specifically among online shoppers, as it offers great discounts for popular items....

This Coinminer arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

FAKEAV variants arrive on systems via compromised websites, spammed malicious links; poisoned search results that lead to FAKEAV download pages, malicious...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It does not have...

This is Trend Micro detection for TCP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host...

This Android malware poses as the Farm Frenzy game to lure users into downloading its copy on their Android-based phones.To get a one-glance comprehensive view...

This Trojan Spy arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.However, as...

KOOBFACE malware are known for targeting the social networking site Facebook to spread via infected wall posts. It was first spotted in 2008, but KOOBFACE was...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Ransomware may be dropped by other malware.

Rootkit.SH.BROOTKIT.A

This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host...

FAKEAV variants arrive on systems via compromised websites, spammed malicious links; poisoned search results that lead to FAKEAV download pages, malicious...

This Trojan Spy arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It executes...

This backdoor contains a list of user names and passwords which it uses in its attempt to grant access to the System Root folder of an infected machine. It...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It executes the...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:Web Client Common1012141 - Microsoft Windows MSHTML Platform Spoofing Vulnerability...

RAMNIT is a multi-component malware that infects .DLL, .

Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be...

This Trojan has received attention from independent media sources and/or other security firms.To get a one-glance comprehensive view of the behavior of this...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It uses Windows...

TorrentLocker takes advantage of the 2015 tax season in the ANZ region. Trend Micro researchers found a spammed message that lures users by using penalty tax...

Unspecified vulnerability in theJava Runtime Environment component in Oracle Java SE JDK and JRE allows remote untrusted Java Web Start applications and...

This Trojan arrives as a component bundled with malware/grayware packages.It requires its main component to successfully perform its intended routine.

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

Microsoft addresses the following vulnerabilities in its May batch of patches for 2015: (MS15-043) Cumulative Security Update for Internet Explorer (3049563)...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It does not...

POISONIVY, also known as POISON, is a popular Remote Administration Tool (RAT) backdoor available in the underground market. It has been in circulation for...

Carelessly opening attachments may cause your computer unwanted malware infection. As observed by Trend Micro researchers in 2013, Blackhole Exploit...

The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2,...

This worm may be downloaded by other malware/grayware/spyware from remote sites. It may be unknowingly downloaded by a user while visiting malicious websites.

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host...