Change logs for security intelligence update version

This page lists newly added and updated threat detections included in security intelligence updates for Windows Defender Antivirus and other Microsoft antimalware. If you don’t find the latest security intelligence update version in the selector below, please refresh this page or let us know us know through the feedback smiley.

Looking for the latest update? Download the latest update

Released on

Added threat detections

No new threat detections added in selected update

Name Severity
Behavior:Win32/OfficeWmicXsl.A severe
PWS:Win32/Yunsip severe
Trojan:MSIL/Wizrem severe
Trojan:Win32/Azorult severe
Trojan:Win32/Conduit severe
Trojan:Win32/Delpem severe
Trojan:Win32/Diplugem severe
Trojan:Win32/FlyAgent severe
Trojan:Win32/Gupboot severe
Trojan:Win32/Gupboot severe
Trojan:Win32/Palev severe
Trojan:Win32/Primarypass severe
Trojan:Win32/Tougle severe
Trojan:Win32/Trickler severe
TrojanDownloader:JS/Wonka!MSR severe
TrojanDownloader:PowerShell/Elshutilo.CM!eml severe
TrojanDropper:Win32/Dexel severe
TrojanSpy:Win32/AveMaria.BM!ctv severe
VirTool:Win32/Fareit severe
Trojan:PowerShell/Mimikatz!MSR severe
Backdoor:Java/Adwind!MSR severe
PUA:MacOS/InstallCore.A!MTB severe
PWS:HTML/Phish!MSR severe
Trojan:Win32/FakeFilecoder.PA!MTB severe
TrojanDownloader:Linux/BashAgent!MSR severe
TrojanDownloader:O97M/Emotet.UY!MTB severe
TrojanDownloader:O97M/Emotet.VA!MTB severe
TrojanDownloader:VBS/Donvibs!MSR severe
Exploit:O97M/CVE-2017-8570.AR!MTB severe
PUA:MacOS/InstallCore.A!MTB severe
PWS:HTML/Phish!MSR severe
TrojanDownloader:O97M/Predator.AR!MTB severe
TrojanDropper:O97M/GraceWire.AI!MTB severe
TrojanDropper:O97M/GraceWire.AJ!MTB severe
Trojan:AndroidOS/Locker!MSR severe
Trojan:AndroidOS/Locker!MSR severe
TrojanDownloader:O97M/Emotet.UX!MTB severe
TrojanDownloader:O97M/Emotet.UW!MTB severe
Exploit:O97M/CVE-2017-11882.AV!ctv severe
Trojan:Win32/Execution.CZ!ctv severe
Trojan:Win32/Execution.IO!ctv severe
Trojan:Win32/Pynamer.A!ctv severe
Trojan:Win32/Ursnif.AAA!rfn severe
Trojan:Win32/Ursnif.AAA!rfn severe
Trojan:Win64/LotusBlossom.D!dha severe
TrojanDownloader:O97M/Emotet.UH!ctv severe
TrojanDownloader:O97M/Emotet.UJ!ctv severe
TrojanDownloader:O97M/Ursnif.AZ!ctv severe
TrojanSpy:Win32/Banload.AAA!ctv severe
Trojan:PDF/PirDoc!MSR severe

Updated threat detections

No threat detections updated in selected update

Name Severity
Trojan:HTML/Phish!MSR severe
Trojan:Win32/Tiggre!rfn severe
Trojan:Win32/Vbobfus.A!eml severe
Trojan:Win32/Emotet.ARJ!MTB severe
TrojanDownloader:O97M/Emotet.ARJ!MTB severe
TrojanDownloader:O97M/Predator.ARJ!MTB severe
Adware:Win32/Eorezo high
Backdoor:Linux/Mirai severe
Backdoor:MSIL/Bladabindi severe
Backdoor:Win32/Rukap severe
Backdoor:Win32/Sdbot severe
Backdoor:Win32/Wabot severe
DDoS:Linux/Lightaidra severe
DDoS:Win32/Stormser severe
Exploit:O97M/CVE severe
Exploit:O97M/CVE-2017-11882!ctv severe
Exploit:O97M/CVE-2017-11882!MSR severe
Exploit:O97M/CVE-2017-11882.AY!ctv severe
FriendlyFiles low
HackTool:MSIL/AutoKMS high
HackTool:Win32/AutoKMS high
Misleading:Win32/Pidmecc high
PWS:HTML/Phish severe
PWS:Win32/Fareit severe
PWS:Win32/Mofksys severe
Ransom:Win32/GandCrab severe
Ransom:Win32/Wadhrama severe
SoftwareBundler:Win32/Prepscram high
Trojan:BAT/Musecador severe
Trojan:MSIL/Bladabindi severe
Trojan:O97M/Obfuse severe
Trojan:PowerShell/Mimikatz!MSR severe
Trojan:Script/Conteban.A!ctv severe
Trojan:Script/Foretype.A!ctv severe
Trojan:Script/Oneeva.A!ctv severe
Trojan:Script/Woreflint.A!ctv severe
Trojan:VBS/Sonbokli.A!ctv severe
Trojan:Win32/AutoKMS severe
Trojan:Win32/Banload severe
Trojan:Win32/Bluteal!ctv severe
Trojan:Win32/Casdet!ctv severe
Trojan:Win32/Cerber severe
Trojan:Win32/CoinMiner severe
Trojan:Win32/CryptInject severe
Trojan:Win32/CryptInject!MSR severe
Trojan:Win32/Danabot severe
Trojan:Win32/Ekstak severe
Trojan:Win32/Emotet severe
Trojan:Win32/Emotet.ARJ!MTB severe
Trojan:Win32/Esulat.A!ctv severe
Trojan:Win32/Fareit severe
Trojan:Win32/Fiya severe
Trojan:Win32/Foribus severe
Trojan:Win32/Gandcrab severe
Trojan:Win32/Gepys severe
Trojan:Win32/Glupteba severe
Trojan:Win32/Gupboot severe
Trojan:Win32/Gupboot severe
Trojan:Win32/IcedId severe
Trojan:Win32/Indiloadz severe
Trojan:Win32/Killav severe
Trojan:Win32/Kripin severe
Trojan:Win32/KuaiZip severe
Trojan:Win32/Lokibot severe
Trojan:Win32/Lunam severe
Trojan:Win32/Mydoom severe
Trojan:Win32/Occamy.C!ctv severe
Trojan:Win32/Palev severe
Trojan:Win32/Prepscram severe
Trojan:Win32/QQPass severe
Trojan:Win32/SmokeLoader severe
Trojan:Win32/Sonbokli.A!ctv severe
Trojan:Win32/Stealer severe
Trojan:Win32/Tiggre!ctv severe
Trojan:Win32/Tisifi.B!ctv severe
Trojan:Win32/Tougle severe
Trojan:Win32/Tougle severe
Trojan:Win32/Troldesh severe
Trojan:Win32/Upatre severe
Trojan:Win32/Uphosyfs severe
Trojan:Win32/Vflooder severe
Trojan:Win32/Vibace.A!ctv severe
Trojan:Win32/Viball.A!ctv severe
Trojan:Win32/Vibem severe
Trojan:Win32/Vibven.A!ctv severe
Trojan:Win32/Vobfus severe
Trojan:Win32/Wacatac.C!ctv severe
Trojan:Win64/Alureon severe
Trojan:Win64/CoinMiner severe
Trojan:Win64/CryptInject!MSR severe
TrojanDownloader:O97M/Donoff severe
TrojanDownloader:O97M/Emotet.ARJ!ctv severe
TrojanDownloader:O97M/Emotet.ARJ!MTB severe
TrojanDownloader:O97M/Emotet.VC!MTB severe
TrojanDownloader:O97M/Emotet.VC!MTB severe
TrojanDownloader:O97M/Obfuse severe
TrojanDownloader:PowerShell/Elshutilo.CM!eml severe
TrojanDropper:O97M/Powdow!MTB severe
TrojanDropper:Win32/Addrop severe
TrojanDropper:Win32/Dinwod severe
TrojanDropper:Win32/Gepys severe
Worm:Win32/Ainslot severe
Worm:Win32/Autorun severe
Worm:Win32/Brontok severe
Worm:Win32/Citeary severe
Worm:Win32/Gamarue severe
Worm:Win32/Ganelp severe
Worm:Win32/Mydoom severe
Worm:Win32/Picsys severe
Worm:Win32/Sfone severe
Trojan:HTML/Phish!MSR severe
Trojan:Win32/CryptInject!MSR severe
TrojanSpy:Win32/Banker!MSR severe
Backdoor:MSIL/Noancooe severe
Backdoor:Win32/Predator.J!MTB severe
Backdoor:Win32/Predator.J!rfn severe
Backdoor:Win32/QuasarRAT.A severe
Exploit:O97M/CVE-2017-11882!MTB severe
Exploit:Perl/CVE-2019-19781!MSR severe
HackTool:Win32/AutoKMS high
HackTool:Win32/Virledi.A high
PWS:Win32/Fareit.MS!MTB severe
PWS:Win32/Vidar.YB!MTB severe
PWS:Win32/Vidar.YB!rfn severe
Trojan:PHP/Forkbomb!MSR severe
Trojan:Win32/Bluteal!rfn severe
Trojan:Win32/Bluteal.B!rfn severe
Trojan:Win32/Bumat!rts high
Trojan:Win32/CoinMiner.AC!rfn severe
Trojan:Win32/CryptInject!MSR severe
Trojan:Win32/Dynamer!ac severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Emotet!rfn severe
Trojan:Win32/Emotet.PE!MSR severe
Trojan:Win32/Generic!rfn severe
Trojan:Win32/Glupteba.D!rfn severe
Trojan:Win32/HistBoader.A severe
Trojan:Win32/Occamy.C severe
Trojan:Win32/Pynamer.B!rfn severe
Trojan:Win32/Skeeyah.A!MTB severe
Trojan:Win32/Skeeyah.A!rfn severe
Trojan:Win32/Skeeyah.B!rfn severe
Trojan:Win32/Sonoko.A!ms severe
Trojan:Win32/Suloc.A severe
Trojan:Win32/Tonmye severe
Trojan:Win32/TrickBot.I severe
Trojan:Win32/Venik!rfn severe
Trojan:Win64/BitcoinMiner severe
TrojanDownloader:JS/Nemucod!rfn severe
TrojanDownloader:JS/Swabfex severe
TrojanDownloader:O97M/Emotet.ARJ!MTB severe
TrojanDownloader:VBS/Donvibs!MSR severe
TrojanDownloader:Win32/Dofoil!rfn severe
TrojanDropper:Win32/Dinwod.B!rfn severe
TrojanDropper:Win32/Randrew.A!bit severe
Worm:Win32/Dorkbot.gen!rfn severe
Worm:Win32/Esfury.X severe
Backdoor:MSIL/Bladabindi severe
Backdoor:Win32/Fynloski severe
Exploit:O97M/CVE-2017-11882 severe
Trojan:Win32/Bluteal!rfn severe
Trojan:Win32/Casdet!rfn severe
Trojan:Win32/CoinMiner!bit severe
Trojan:Win32/CryptInject severe
Trojan:Win32/CryptInject!MSR severe
Trojan:Win32/CryptInject.GTLM!rfn severe
Trojan:Win32/DefenseEvasion!rfn severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Emotet!rfn severe
Trojan:Win32/Emotet.DS!rfn severe
Trojan:Win32/Execution!rfn severe
Trojan:Win32/Gandcrab.AF severe
Trojan:Win32/Generic!rfn severe
Trojan:Win32/Occamy.B severe
Trojan:Win32/Pynamer.B!rfn severe
Trojan:Win32/Sisron!gmb severe
Trojan:Win32/Skeeyah.A!rfn severe
Trojan:Win32/Skeeyah.B!rfn severe
Trojan:Win32/Sulunch!gmb severe
Trojan:Win32/Trafog!rts high
Trojan:Win32/Vagger!rfn severe
Trojan:Win32/Wrokni severe
TrojanDownloader:JS/Nemucod!rfn severe
TrojanDownloader:VBS/Nemucod!MTB severe
TrojanDownloader:Win32/FakeIE.B severe
VirTool:MSIL/Injector severe
VirTool:Win32/Injector.JG severe
Worm:Win32/Esfury.X severe
Exploit:O97M/CVE-2017-11882 severe
Trojan:Win32/Emotet.ARJ!MTB severe
TrojanDownloader:O97M/Emotet.ARJ!MTB severe
TrojanDownloader:O97M/Emotet.UW!MTB severe
TrojanDropper:O97M/Powdow!MTB severe
Exploit:VBS/Mult.A severe
Trojan:AndroidOS/Locker!MSR severe
Trojan:AndroidOS/Locker!MSR severe
Trojan:Win32/Bluteal!rfn severe
TrojanDownloader:Win32/Adload.DX!bit high
TrojanDropper:O97M/GraceWire.ARJ!eml severe
TrojanDropper:O97M/GraceWire.ARJ!eml severe
Trojan:Win32/CryptInject!MSR severe
Exploit:O97M/CVE-2017-0199 severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Emotet.DAH!rfn severe
Trojan:Win32/Emotet.DAI!rfn severe
Trojan:Win32/Genasep.A severe
Trojan:Win32/Generic!rfn severe
Trojan:Win32/Orsam!rfn severe
Trojan:Win32/TrickBot.CZ!rfn severe
TrojanDownloader:O97M/Ursnif.AX!rfn severe
TrojanDropper:O97M/Powdow.AM!rfn severe
TrojanDropper:O97M/Powdow.AN!rfn severe
Adware:Win32/Hebogo high
Backdoor:MSIL/Bladabindi severe
Backdoor:Win32/Predator.J!MTB severe
Backdoor:Win32/Predator.J!rfn severe
BrowserModifier:Win32/Diplugem high
Exploit:O97M/CVE-2017-11882!rfn severe
Exploit:O97M/CVE-2018-0802.A severe
HackTool:Win32/AutoKMS high
HackTool:Win32/AutoKMS!rfn high
HackTool:Win32/Keygen high
HackTool:Win32/Virledi.A high
Program:Win32/Unwaders.C!ml severe
PWS:MSIL/Grmasi.YA!rfn severe
PWS:Win32/Gamania severe
PWS:Win32/Stealer.H!bit severe
PWS:Win32/Stimilina.E!rfn severe
PWS:Win32/Zbot severe
Trojan:MSIL/Loksec.A severe
Trojan:Win32/Bluteal!rfn severe
Trojan:Win32/Bumat!rts high
Trojan:Win32/CoinMiner!rfn severe
Trojan:Win32/Crysteb!rfn severe
Trojan:Win32/Crysteb.A severe
Trojan:Win32/DefenseEvasion!rfn severe
Trojan:Win32/Dynamer!ac severe
Trojan:Win32/Dynamer!dtc severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Emali.A!rfn severe
Trojan:Win32/Emotet severe
Trojan:Win32/Emotet!rfn severe
Trojan:Win32/Execution!rfn severe
Trojan:Win32/Floxif.E severe
Trojan:Win32/Gandcrab.AF severe
Trojan:Win32/Generic!rfn severe
Trojan:Win32/Glupteba.D!rfn severe
Trojan:Win32/Grenam.B!inf severe
Trojan:Win32/Meredrop severe
Trojan:Win32/MereTam.A severe
Trojan:Win32/Neurevt severe
Trojan:Win32/Occamy.A severe
Trojan:Win32/Occamy.B severe
Trojan:Win32/Occamy.C severe
Trojan:Win32/Peals.E!gfc severe
Trojan:Win32/Persistence!rfn severe
Trojan:Win32/Pynamer.A!rfn severe
Trojan:Win32/Pynamer.B!rfn severe
Trojan:Win32/Ramnit severe
Trojan:Win32/Skeeyah.A!rfn severe
Trojan:Win32/Skeeyah.B!rfn severe
Trojan:Win32/Sodebral.E severe
Trojan:Win32/Sonoko.A!ms severe
Trojan:Win32/Sonoko.A!rfn severe
Trojan:Win32/Stealer.J!rfn severe
Trojan:Win32/Tiggre!rfn severe
Trojan:Win32/Winexert!rfn severe
Trojan:Win32/Zpevdo.A severe
TrojanDownloader:JS/Donvibs.ED severe
TrojanDownloader:JS/Nemucod severe
TrojanDownloader:JS/Nemucod!rfn severe
TrojanDownloader:JS/Swabfex.C severe
TrojanDownloader:O97M/Donoff severe
TrojanDownloader:O97M/Dornoe.A!ams severe
TrojanDownloader:O97M/Dornoe.A!rfn severe
TrojanDownloader:O97M/Dornoe.C!rfn severe
TrojanDownloader:Script/Nimcud!rfn severe
TrojanDownloader:SWF/Esaprof.A severe
TrojanDownloader:Win32/Banload severe
TrojanDownloader:Win32/Delfhal severe
TrojanDownloader:Win32/Upatre severe
TrojanDownloader:Win32/Zurgop.AR!rfn severe
TrojanSpy:Win32/Tinukebot severe
VirTool:Win32/CeeInject.TN!rfn severe
Worm:Win32/Esfury.X severe
Worm:Win32/Mira.A severe
Adware:Win32/Hebogo high
Backdoor:MSIL/Bladabindi severe
Backdoor:MSIL/Bladabindi!rfn severe
Backdoor:Win32/Bisar!rfn severe
Backdoor:Win32/Gaertob.A severe
Backdoor:Win32/Predator.J!rfn severe
Backdoor:Win32/Trenk!rfn severe
Exploit:O97M/CVE-2017-11882!ctv severe
Exploit:O97M/CVE-2017-11882.AW!ctv severe
Exploit:O97M/CVE-2017-11882.AX!ctv severe
Exploit:O97M/CVE-2017-11882.AY!ctv severe
FriendlyFiles low
HackTool:Win64/Mikatz!rfn high
PWS:MSIL/Grmasi.YA!MTB severe
PWS:Win32/Stimilina.E!rfn severe
PWS:Win32/Vidar.YB!rfn severe
Trojan:MSIL/Discord.BM!rfn severe
Trojan:MSIL/LoressoObfus.B!ctv severe
Trojan:O97M/Sonbokli.A!ctv severe
Trojan:O97M/Usnimb.A!ctv severe
Trojan:Script/Casur.A!ctv severe
Trojan:Script/Conteban.A!ctv severe
Trojan:Script/Oneeva.A!ctv severe
Trojan:Script/Woreflint.A!ctv severe
Trojan:VBS/Sonbokli.A!ctv severe
Trojan:Win32/Bluteal!ctv severe
Trojan:Win32/Bumat!rfn severe
Trojan:Win32/CryptInject.GTLM!rfn severe
Trojan:Win32/Crysteb!rfn severe
Trojan:Win32/Danginex severe
Trojan:Win32/Dynamer!ac severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Emali.B!ctv severe
Trojan:Win32/Emotet!rfn severe
Trojan:Win32/Emotet.AC!rfn severe
Trojan:Win32/Emotet.DAG!rfn severe
Trojan:Win32/Esulat.A!ctv severe
Trojan:Win32/Generic!rfn severe
Trojan:Win32/Glupteba.D!rfn severe
Trojan:Win32/Injeber.A!rfn severe
Trojan:Win32/LotusBlossom.D!dha severe
Trojan:Win32/Occamy.A!ctv severe
Trojan:Win32/Occamy.B severe
Trojan:Win32/Occamy.C severe
Trojan:Win32/Occamy.C!ctv severe
Trojan:Win32/Orsam!rfn severe
Trojan:Win32/Orsam!rts high
Trojan:Win32/Plutruption!rfn severe
Trojan:Win32/Pynamer.A!rfn severe
Trojan:Win32/Pynamer.B!rfn severe
Trojan:Win32/Sehyioa.A!ctv severe
Trojan:Win32/Skeeyah.A!ctv severe
Trojan:Win32/Skeeyah.A!rfn severe
Trojan:Win32/Skeeyah.B!ctv severe
Trojan:Win32/Sonbokli.A!ctv severe
Trojan:Win32/Sonoko.A!rfn severe
Trojan:Win32/Tiggre!ctv severe
Trojan:Win32/Tiggre!rfn severe
Trojan:Win32/Tisace.A!ctv severe
Trojan:Win32/Tisar.A!ctv severe
Trojan:Win32/Tisifi.B!ctv severe
Trojan:Win32/Tisifi.F!ctv severe
Trojan:Win32/Trufip!rfn severe
Trojan:Win32/Vibace.A!ctv severe
Trojan:Win32/Viball.A!ctv severe
Trojan:Win32/Vibven.A!ctv severe
Trojan:Win32/Winexert!rfn severe
Trojan:Win32/Zonsterarch.BW severe
TrojanDownloader:O97M/Donoff!rfn severe
TrojanDownloader:O97M/Dornoe.A!ctv severe
TrojanDownloader:O97M/Dornoe.A!rfn severe
TrojanDownloader:O97M/Dornoe.C!rfn severe
TrojanDownloader:O97M/Emotet!ctv severe
TrojanDownloader:O97M/Emotet.ARJ!ctv severe
TrojanDownloader:PDF/Emotet.ARJ!MTB severe
TrojanDownloader:Win32/Chepvil.N severe
TrojanDownloader:Win32/Dofoil!rfn severe
TrojanDownloader:Win32/FakeIE.B severe
TrojanDownloader:Win32/Troxen!rfn severe
TrojanDropper:O97M/Powdow.AM!rfn severe
TrojanDropper:Win32/Cutwail severe
TrojanDropper:Win32/Dunik!rfn severe
TrojanDropper:Win32/Randrew.A!rfn severe
Worm:AutoIt/Nuqel severe
Trojan:Win32/DefenseEvasion!rfn severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Miuref.R severe
Trojan:Win32/Skeeyah.A!rfn severe
TrojanDownloader:Win32/Adload!rfn high