Change logs for security intelligence update version

This page lists newly added and updated threat detections included in security intelligence updates for Windows Defender Antivirus and other Microsoft antimalware. If you don’t find the latest security intelligence update version in the selector below, please refresh this page or let us know us know through the feedback smiley.

Looking for the latest update? Download the latest update

Released on

Added threat detections

No new threat detections added in selected update

Name Severity
backdoor:win32/shadowhammer severe
backdoor:win32/shadowhammer!dha severe
trojandownloader:vbs/shepowexen!rfn severe
Trojan:Win32/Asruex.A severe
Trojan:Win32/Fukru.PF severe
Worm:Win32/Sharep severe

Updated threat detections

No threat detections updated in selected update

Name Severity
adware:win32/filetour high
backdoor:linux/mirai!rfn severe
backdoor:msil/bladabindi severe
backdoor:msil/bladabindi.aj severe
backdoor:msil/bladabindi.b severe
backdoor:msil/noancooe.a severe
backdoor:msil/noancooe.b severe
backdoor:win32/kirts!rfn severe
backdoor:win32/predator.j!mtb severe
backdoor:win32/quasarrat.a severe
backdoor:win32/rescoms.b severe
backdoor:win32/shadowhammer severe
backdoor:win32/zegost.b severe
backdoor:win32/zegost.l severe
behavior:win32/remotewmipowershellenvvarobfus.a severe
behavior:win32/remotewmipowershellenvvarwrite.a severe
behavior:win32/remotewmipowershellfilecopy.a severe
browsermodifier:win32/prifou high
exploit:o97m/cve-2017-11882!rfn severe
exploit:o97m/cve-2017-11882.c severe
exploit:o97m/cve-2017-11882.d severe
exploit:win32/cve-2018-20250 severe
hacktool:win32/autokms!rfn high
hacktool:win32/keygen!rfn high
hacktool:win64/mikatz!dha high
misleading:win32/lodi high
pws:win32/primarypass.a severe
pws:win32/stimilina!rfn severe
pws:win32/vidar.yb!mtb severe
pws:win32/zbot!rfn severe
pws:win32/zbot!vm severe
ransom:win32/cerber.hvt severe
ransom:win32/genasom severe
ransom:win32/troldesh.a severe
trojan:androidos/hiddad!rfn severe
trojan:bat/nabucur.a severe
trojan:java/jrat severe
trojan:js/startpage.s severe
trojan:msil/agenttesla!mtb severe
trojan:o97m/obfuse!rfn severe
trojan:o97m/obfuse.ac severe
trojan:o97m/phish severe
trojan:powershell/powersploit.a severe
trojan:win32/asacky!rfn severe
trojan:win32/asacky.a!bit severe
trojan:win32/autorun!rfn severe
trojan:win32/bluteal!rfn severe
trojan:win32/casdet!rfn severe
trojan:win32/coinminer.c!cl severe
trojan:win32/crysteb!rfn severe
trojan:win32/dynamer!rfn severe
trojan:win32/emali.a!cl severe
trojan:win32/emotet!rfn severe
trojan:win32/emotet.ac!bit severe
trojan:win32/emotet.cj severe
trojan:win32/emotet.lk!ml severe
trojan:win32/genasep.a severe
trojan:win32/glupteba severe
trojan:win32/gootkit.ac!mtb severe
trojan:win32/histboader.a severe
trojan:win32/injectpyinc.sa severe
trojan:win32/kovter severe
trojan:win32/meretam.a severe
trojan:win32/meterpreter.o severe
trojan:win32/nymaim.ya severe
trojan:win32/occamy.a severe
trojan:win32/occamy.b severe
trojan:win32/occamy.c severe
trojan:win32/pynamer.a!ac severe
trojan:win32/pynamer.b!ac severe
trojan:win32/skeeyah.a!rfn severe
trojan:win32/skeeyah.b!rfn severe
trojan:win32/sonoko.a!ms severe
trojan:win32/spawnerx.f severe
trojan:win32/startpage high
trojan:win32/swrort.a severe
trojan:win32/tiggre!rfn severe
trojan:win32/toga!rfn severe
trojan:win32/ursnif!rfn severe
trojan:win32/ursnif.ad!mtb severe
trojan:win64/alureon!rfn severe
trojandownloader:js/bitsabuse!rfn severe
trojandownloader:js/shepowexen.a severe
trojandownloader:o97m/donoff severe
trojandownloader:o97m/dornoe.a!ams severe
trojandownloader:o97m/dornoe.b!ams severe
trojandownloader:o97m/obfuse!rfn severe
trojandownloader:o97m/obfuse.dw severe
trojandownloader:o97m/obfuse.dz severe
trojandownloader:pdf/domepidief.al severe
trojandownloader:script/nemucod.jac severe
trojandownloader:win32/dofoil!rfn severe
trojandownloader:win32/upatre!rfn severe
trojandownloader:win32/upatre.a severe
trojandownloader:win32/upatre.aa severe
trojandropper:powershell/ploty.b severe
trojandropper:win32/gepys severe
trojandropper:win32/gepys!rfn severe
trojandropper:win32/sirefef.gen!c severe
trojanspy:msil/keylog.b severe
trojanspy:win32/swotter.a!bit severe
trojanspy:win32/ursnif!rfn severe
virtool:inf/autorun severe
virtool:win32/ceeinject.bde!bit severe
virtool:win32/vbinject.adb!bit severe
virus:win32/mofksys.b severe
virus:win32/nabucur.b severe
virus:win32/vigorf.a severe
worm:vbs/jenxcus.bc severe
worm:vbs/jenxcus.k severe
worm:win32/ainslot.a severe
worm:win32/gamarue severe
worm:win32/gamarue!rfn severe
worm:win32/gamarue.ar severe
worm:win32/gamarue.i severe
worm:win32/mofksys severe
worm:win32/rebhip.w!dll severe
Trojan:Win32/CryptInject severe
Trojan:Win32/Rozena severe
FriendlyFiles low
HackTool:Win32/CardTool high
Trojan:Win32/Bluteal!rfn severe
Trojan:Win32/Dynamer!ac severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Pynamer.A!ac severe
Trojan:Win32/Tiggre!plock severe
Trojan:Win32/Tiggre!rfn severe
VirTool:Win32/VBInject severe
Exploit:O97M/CVE-2017-11882!MTB severe
BrowserModifier:Win32/Foxiebro high
TrojanProxy:Win32/Bunitu.Q!bit severe
Trojan:Win32/CryptInject severe
FriendlyFiles low
Backdoor:MSIL/Bladabindi severe
Backdoor:MSIL/Bladabindi.B severe
Backdoor:Win32/Zegost severe
HackTool:MSIL/AutoKMS high
HackTool:Win32/Keygen high
HackTool:Win32/Meterpreter.A!dll high
PWS:Win32/Primarypass.A severe
Trojan:O97M/Obfuse!rfn severe
Trojan:O97M/Obfuse.CO severe
Trojan:Win32/Bluteal.B!rfn severe
Trojan:Win32/Casdet!rfn severe
Trojan:Win32/DSSDetection severe
Trojan:Win32/Dynamer!ac severe
Trojan:Win32/Dynamer!dtc severe
Trojan:Win32/Dynamer!rfn severe
Trojan:Win32/Grenam.B!inf severe
Trojan:Win32/Occamy.A severe
Trojan:Win32/Occamy.C severe
Trojan:Win32/Orsam!rts high
Trojan:Win32/Skeeyah.A!rfn severe
Trojan:Win32/Skeeyah.B!rfn severe
Trojan:Win32/Tiggre!plock severe
Trojan:Win32/Tiggre!rfn severe
TrojanDownloader:O97M/Dornoe.A!ams severe
TrojanDownloader:O97M/Obfuse.DB severe
TrojanDownloader:Win32/Moljec.A severe
TrojanDropper:Win32/OnionDuke!rfn severe
HackTool:Win32/Keygen high
Trojan:HTML/Phish severe
Trojan:Win32/Sysdyo severe
TrojanDownloader:JS/Swabfex severe
TrojanDownloader:VBS/Nemucod severe
HackTool:Win32/CheatEngine high