Change logs for security intelligence update version 1.353.818.0

This page lists newly added and updated threat detections included in security intelligence updates for Microsoft Defender Antivirus and other Microsoft antimalware. If you don’t find the latest security intelligence update version in the selector below, please refresh this page or let us know us know through the feedback smiley.

Looking for the latest update? Download the latest update

Security intelligence update version

Released on

11/11/2021 2:16:17 PM

Added threat detections

Name	Severity
Backdoor:MSIL/ShellClient.A	severe
Backdoor:MSIL/ShellClient.A!dll	severe
Backdoor:Win32/Zegost.DF!MTB	severe
Behavior:Win32/OfficeExecPE.B	severe
Ransom:MSIL/WannaCrypt.PD!MTB	severe
Trojan:HTML/Phish.PAAO!MTB	severe
Trojan:MSIL/AgentTesla.DKE!MTB	severe
Trojan:MSIL/AgentTesla.DKF!MTB	severe
Trojan:MSIL/AgentTesla.DKR!MTB	severe
Trojan:MSIL/AgentTesla.LJA!MTB	severe
Trojan:Win32/Chrop.DF!MTB	severe
Trojan:Win32/DelfInject.DF!MTB	severe
Trojan:Win32/DelfInject.UA!MTB	severe
Trojan:Win32/Hanictor.VAM!MTB	severe
Trojan:Win32/Kryptik.FNFF!MTB	severe
Trojan:Win32/SpyNoon.KA!MTB	severe
Trojan:Win32/Tinukebot.DF!MTB	severe
Trojan:Win32/Tnega.RKA!MTB	severe
TrojanDownloader:O97M/EncDoc.ASX!MTB	severe
TrojanDownloader:O97M/EncDoc.QXBT!MTB	severe
TrojanDownloader:O97M/EncDoc.SKQB!MTB	severe
TrojanSpy:AndroidOS/SpyAgent.F	severe

Updated threat detections

Name	Severity
Adware:Win32/Linkury.RS!MTB	high
Adware:Win32/WiperSoft	high
Adware:Win32/Zdengo	high
Backdoor:Linux/Mirai!rfn	severe
Backdoor:Linux/Mirai.B!MTB	severe
Backdoor:Linux/Mirai.K!rfn	severe
Backdoor:MSIL/Bladabindi	severe
Backdoor:MSIL/Bladabindi!rfn	severe
Backdoor:MSIL/Noancooe.A	severe
Backdoor:MSIL/Noancooe.C	severe
Backdoor:Win32/Bezigate.B	severe
Backdoor:Win32/Bladabindi!ml	severe
Backdoor:Win32/Gaertob.A	severe
Backdoor:Win32/Kirts.A	severe
Backdoor:Win32/NetWiredRC.D	severe
Backdoor:Win32/Plugx	severe
Backdoor:Win32/Predator.J!MTB	severe
Backdoor:Win32/Predator.J!rfn	severe
Backdoor:Win32/Remcos!mclg	severe
Backdoor:Win32/Trenk!rfn	severe
Backdoor:Win32/Tron	severe
Behavior:Linux/Fairware.A	severe
Behavior:Linux/RansomDarkside.B	severe
Behavior:Linux/RansomKimcilware.A	severe
Behavior:Linux/RansomLilocked.A	severe
Behavior:Linux/RansomMespinoza.A	severe
Behavior:Linux/Ransomware!Ext.A	severe
Behavior:Linux/TeamTNTSuspicious.A	severe
BrowserModifier:Win32/Adrozek	high
BrowserModifier:Win32/Foxiebro	high
BrowserModifier:Win32/Prifou!MTB	high
DDoS:Linux/Lightaidra!rfn	severe
Exploit:O97M/CVE-2017-0199.BKMY!MTB	severe
Exploit:O97M/CVE-2017-11882!rfn	severe
Exploit:O97M/CVE-2017-11882.BKQZ!MTB	severe
Exploit:O97M/CVE-2017-11882.L	severe
Exploit:O97M/CVE-2017-11882.PK!MTB	severe
Exploit:O97M/CVE-2017-11882.PW!MTB	severe
Exploit:Win32/CVE-2018-8453.A	severe
Exploit:Win32/ShellCode!ml	severe
HackTool:MSIL/AutoKms	high
HackTool:MSIL/Boilod.A	high
HackTool:Win32/AutoKMS	high
HackTool:Win32/AutoKMS!ml	high
HackTool:Win32/AutoKMS!rfn	high
HackTool:Win32/GameHack!MSR	high
HackTool:Win32/Keygen	high
HackTool:Win32/Keygen!rfn	high
HackTool:Win32/Virledi!rfn	high
HackTool:Win32/Virledi.A	high
HackTool:Win64/Mikatz!dha	high
Misleading:Win32/Booleaost	high
Misleading:Win32/Boresoto	high
Misleading:Win32/Ditirise	high
Misleading:Win32/Lodi	high
Misleading:Win32/Misleading	high
Misleading:Win32/Mizerpopt	high
Misleading:Win32/Opitdeps	high
Misleading:Win32/Recushon	high
Misleading:Win32/Rusojing	high
Misleading:Win32/Sayicani	high
Misleading:Win32/Softeallion	high
MonitoringTool:Win32/007Spy	severe
Program:Win32/Hadsruda!rfn	moderate
Program:Win32/Multiverze	high
Program:Win32/Occamy.AA	moderate
Program:Win32/Vigram.A	severe
Program:Win32/Ymacco.AA1C	high
Program:Win32/Ymacco.AAD9	high
Program:Win32/Ymacco.AAF6	high
PUAAdvertising:Win32/2345Cn	severe
PUAAdvertising:Win32/CrossRider	severe
PUADlManager:Win32/InstallCore	severe
PUAMiner:Win64/PhoenixMiner	severe
PWS:Win32/Frethog	severe
PWS:Win32/Recealer.GKM!MTB	severe
PWS:Win32/Vidar	severe
Ransom:AndroidOS/Drokole!rfn	severe
Ransom:MacOS/Filecoder	severe
Ransom:MSIL/Gorf	severe
Ransom:Win32/Ako	severe
Ransom:Win32/Babuk.MAK!MTB	severe
Ransom:Win32/Blocker	severe
Ransom:Win32/Cerber	severe
Ransom:Win32/Cobra	severe
Ransom:Win32/Crypmod	severe
Ransom:Win32/CVE	severe
Ransom:Win32/DelShad	severe
Ransom:Win32/Ergop	severe
Ransom:Win32/Eris	severe
Ransom:Win32/Firecerb	severe
Ransom:Win32/Gandcrab	severe
Ransom:Win32/Genasom	severe
Ransom:Win32/Globeimposter	severe
Ransom:Win32/Hermes.MAK!MTB	severe
Ransom:Win32/HydraCrypt.A	severe
Ransom:Win32/LockBit	severe
Ransom:Win32/Locky	severe
Ransom:Win32/Sodinokibi.SK!MSR	severe
Ransom:Win32/STOP	severe
Ransom:Win32/STOP.BS!rfn	severe
Ransom:Win32/StopCrypt.MOK!MTB	severe
Ransom:Win32/StopCrypt.MPK!MTB	severe
Ransom:Win32/StopCrypt.PG!MTB	severe
Ransom:Win32/StopCrypt.PN!MTB	severe
Ransom:Win32/Troldesh.A	severe
Ransom:Win32/WannaCrypt.H	severe
Rogue:Win32/FakeRean	severe
Trojan:HTML/Brocoiner!rfn	severe
Trojan:HTML/Phish.BO!MTB	severe
Trojan:Java/StrRat.BK!MTB	severe
Trojan:JS/Obfus!MSR	severe
Trojan:JS/Obfuse!MSR	severe
Trojan:JS/PowCript.A	severe
Trojan:Linux/Roopre!rfn	severe
Trojan:MSIL/AgentTesla.RKA!MTB	severe
Trojan:MSIL/AgentTesla.SSS!MTB	severe
Trojan:MSIL/AutoKMS!rfn	severe
Trojan:MSIL/Burkina!mclg	severe
Trojan:MSIL/Cryptor	severe
Trojan:MSIL/Loksec.A	severe
Trojan:MSIL/Obfuscator	severe
Trojan:MSIL/RedLineStealer!MSR	severe
Trojan:MSIL/StealerPacker!MTB	severe
Trojan:O97M/Obfuse!rfn	severe
Trojan:O97M/Obfuse.SC!MTB	severe
Trojan:PDF/Phish!MSR	severe
Trojan:Script/Phonzy.A!ml	severe
Trojan:Script/Phonzy.B!ml	severe
Trojan:Script/Phonzy.B!rfn	severe
Trojan:Win32/Adrozek!BV	severe
Trojan:Win32/AgentTesla!ml	severe
Trojan:Win32/ArkeiStealer.DB!MTB	severe
Trojan:Win32/Ashify.J!rfn	severe
Trojan:Win32/AutCobit!rfn	severe
Trojan:Win32/Azorult!ml	severe
Trojan:Win32/Azorult!rfn	severe
Trojan:Win32/Azorult.RF!MTB	severe
Trojan:Win32/Azorult.RWA!MTB	severe
Trojan:Win32/Bladabindi!BV	severe
Trojan:Win32/Bluteal!rfn	severe
Trojan:Win32/Bluteal.B!rfn	severe
Trojan:Win32/Bomitag.D!rfn	severe
Trojan:Win32/Bulz.SIB!MTB	severe
Trojan:Win32/Bumat!rfn	severe
Trojan:Win32/Bumat!rts	high
Trojan:Win32/BunituCrypt.RM!MTB	severe
Trojan:Win32/Casdet!rfn	severe
Trojan:Win32/Ceatrg.A	severe
Trojan:Win32/Ceevee	severe
Trojan:Win32/ClipBanker!MTB	severe
Trojan:Win32/CoinMiner.AC!rfn	severe
Trojan:Win32/CoinMiner.BW!rfn	severe
Trojan:Win32/Convagent!mclg	severe
Trojan:Win32/Convagent!ml	severe
Trojan:Win32/CryptInject	severe
Trojan:Win32/CryptInject!ml	severe
Trojan:Win32/CryptInject!MSR	severe
Trojan:Win32/CryptInject.AP!MTB	severe
Trojan:Win32/CryptInject.PAA!MTB	severe
Trojan:Win32/Cryptinject.PW!MTB	severe
Trojan:Win32/DefenseEvasion!rfn	severe
Trojan:Win32/Dexel	severe
Trojan:Win32/Dinwod.A!MTB	severe
Trojan:Win32/Dofoil.STA	severe
Trojan:Win32/Dorv.A	severe
Trojan:Win32/Dridex.ARJ!MTB	severe
Trojan:Win32/Dridex.DHF!MTB	severe
Trojan:Win32/Dridex.GC!MTB	severe
Trojan:Win32/Dynamer!ac	severe
Trojan:Win32/Dynamer!dtc	severe
Trojan:Win32/Dynamer!rfn	severe
Trojan:Win32/Emotet	severe
Trojan:Win32/Emotet!ml	severe
Trojan:Win32/Emotet!MTB	severe
Trojan:Win32/Emotet!rfn	severe
Trojan:Win32/Emotet.AG!MSR	severe
Trojan:Win32/Emotet.ARJ!rfn	severe
Trojan:Win32/Emotet.DHF!rfn	severe
Trojan:Win32/Emotet.SK!rfn	severe
Trojan:Win32/Emotet.SN!rfn	severe
Trojan:Win32/EmotetCrypt.MT!MTB	severe
Trojan:Win32/EmotetCrypt.V!MTB	severe
Trojan:Win32/Execution!BV	severe
Trojan:Win32/Execution!rfn	severe
Trojan:Win32/Fareit!ml	severe
Trojan:Win32/FormBook.GD!MTB	severe
Trojan:Win32/Gandcrab.AF	severe
Trojan:Win32/Generic!rfn	severe
Trojan:Win32/Glupteba!atmn	severe
Trojan:Win32/Glupteba!ml	severe
Trojan:Win32/Glupteba.D!bit	severe
Trojan:Win32/Glupteba.DHK!MTB	severe
Trojan:Win32/Glupteba.EDS!MTB	severe
Trojan:Win32/Grenam.B!inf	severe
Trojan:Win32/Hider.gen	severe
Trojan:Win32/Injeber.A!rfn	severe
Trojan:Win32/Keygen!rfn	severe
Trojan:Win32/Killav!atmn	severe
Trojan:Win32/Killav.DR	severe
Trojan:Win32/Killav.HF	severe
Trojan:Win32/KryptInject	severe
Trojan:Win32/Malagent!rfn	severe
Trojan:Win32/Mamson.A!ac	severe
Trojan:Win32/Masson.A!ac	severe
Trojan:Win32/Masson.A!rfn	severe
Trojan:Win32/MereTam.A	severe
Trojan:Win32/Meterpreter!BV	severe
Trojan:Win32/Multiverze	severe
Trojan:Win32/Obfuscator!MSR	severe
Trojan:Win32/Obfuscator.KI!MTB	severe
Trojan:Win32/Occamy.AB	severe
Trojan:Win32/Occamy.B	severe
Trojan:Win32/Occamy.C	severe
Trojan:Win32/Occamy.C4C	severe
Trojan:Win32/Occamy.C67	severe
Trojan:Win32/Omkerer.A	severe
Trojan:Win32/Orsam!rfn	severe
Trojan:Win32/PackNETGuard.G!MTB	severe
Trojan:Win32/Pasnaino!ml	severe
Trojan:Win32/Passteal.OHG!MTB	severe
Trojan:Win32/Persistence!rfn	severe
Trojan:Win32/Phorpiex.AM!MTB	severe
Trojan:Win32/Phorpiex.DHE!MTB	severe
Trojan:Win32/Predator.R!MTB	severe
Trojan:Win32/Provis!rfn	severe
Trojan:Win32/Pynamer.A!ac	severe
Trojan:Win32/Pynamer.A!rfn	severe
Trojan:Win32/Pynamer.B!ac	severe
Trojan:Win32/Raccoon.AC!MTB	severe
Trojan:Win32/Ramnit.C	severe
Trojan:Win32/Redosdru.B	severe
Trojan:Win32/Remcos!MTB	severe
Trojan:Win32/Sabsik.FL.A!ml	severe
Trojan:Win32/Sabsik.FL.B!ml	severe
Trojan:Win32/Sabsik.FT.A!ml	severe
Trojan:Win32/Sabsik.TE.B!ml	severe
Trojan:Win32/Seheq!rfn	severe
Trojan:Win32/Skeeyah.A!rfn	severe
Trojan:Win32/Skeeyah.B!rfn	severe
Trojan:Win32/Speesipro.A	severe
Trojan:Win32/SpyNoon.SSS!MTB	severe
Trojan:Win32/Suloc.A	severe
Trojan:Win32/Tnega!mclg	severe
Trojan:Win32/Tnega!ml	severe
Trojan:Win32/Tnega.MS!MTB	severe
Trojan:Win32/Tnega.MU!MTB	severe
Trojan:Win32/Tnega.PAJ!MTB	severe
Trojan:Win32/Tonmye	severe
Trojan:Win32/Trickbot	severe
Trojan:Win32/Trickbot!Core	severe
Trojan:Win32/Trufip!rfn	severe
Trojan:Win32/Vigorf.A	severe
Trojan:Win32/Ymacco.AA02	severe
Trojan:Win32/Ymacco.AA08	severe
Trojan:Win32/Ymacco.AA12	severe
Trojan:Win32/Ymacco.AA2F	severe
Trojan:Win32/Ymacco.AA3B	severe
Trojan:Win32/Ymacco.AA4E	severe
Trojan:Win32/Ymacco.AA64	severe
Trojan:Win32/Ymacco.AA72	severe
Trojan:Win32/Ymacco.AA87	severe
Trojan:Win32/Ymacco.AA92	severe
Trojan:Win32/Ymacco.AAA0	severe
Trojan:Win32/Ymacco.AAA7	severe
Trojan:Win32/Ymacco.AAB0	severe
Trojan:Win32/Ymacco.AABA	severe
Trojan:Win32/Ymacco.AAC7	severe
Trojan:Win32/Ymacco.AAD0	severe
Trojan:Win32/Ymacco.AAE5	severe
Trojan:Win32/Ymacco.AAF2	severe
Trojan:Win32/Ymacco.AB1A	severe
Trojan:Win32/Ymacco.AB57	severe
Trojan:Win32/Ymacco.AB5C	severe
Trojan:Win32/Ymacco.AB62	severe
Trojan:Win32/Ymacco.AB72	severe
Trojan:Win32/Ymacco.AB84	severe
Trojan:Win32/Ymacco.AB8A	severe
Trojan:Win32/Ymacco.AB90	severe
Trojan:Win32/Ymacco.ABA8	severe
Trojan:Win32/Ymacco.ABE7	severe
Trojan:Win32/Ymacco.ABE9	severe
Trojan:Win32/Ymacco.ABED	severe
Trojan:Win32/Ymacco.ABFC	severe
Trojan:Win32/Zonidel.VC!MTB	severe
TrojanClicker:Win32/Losicoa	severe
TrojanDownloader:JS/Jukiwad.A!rfn	severe
TrojanDownloader:JS/Nemucod	severe
TrojanDownloader:JS/Nemucod!rfn	severe
TrojanDownloader:JS/Nemucod.FJ	severe
TrojanDownloader:JS/Nemucod.QM	severe
TrojanDownloader:JS/Swabfex.C	severe
TrojanDownloader:O97M/Donoff	severe
TrojanDownloader:O97M/Donoff!rfn	severe
TrojanDownloader:O97M/Dornoe.A!ams	severe
TrojanDownloader:O97M/Dornoe.A!rfn	severe
TrojanDownloader:O97M/Dornoe.F!ams	severe
TrojanDownloader:O97M/Dornoe.F!rfn	severe
TrojanDownloader:O97M/Dridex.ARJ!MTB	severe
TrojanDownloader:O97M/Emotet!rfn	severe
TrojanDownloader:O97M/Emotet.CSK!MTB	severe
TrojanDownloader:O97M/Emotet.PEE!MTB	severe
TrojanDownloader:O97M/Emotet.RKC!MTB	severe
TrojanDownloader:O97M/Emotet.SC!rfn	severe
TrojanDownloader:O97M/EncDoc.JQ!MTB	severe
TrojanDownloader:O97M/MalSpam!MTB	severe
TrojanDownloader:O97M/Obfuse.DM	severe
TrojanDownloader:O97M/Obfuse.EI	severe
TrojanDownloader:O97M/Powdow.SS!rfn	severe
TrojanDownloader:PowerShell/Ploprolo!rfn	severe
TrojanDownloader:Script/Nemucod.JAC	severe
TrojanDownloader:Win32/Adload	high
TrojanDownloader:Win32/AdLoad	severe
TrojanDownloader:Win32/Cekar	severe
TrojanDownloader:Win32/Esaprof!rfn	severe
TrojanDownloader:Win32/Sinresby.B	severe
TrojanDownloader:Win32/SmallAgent!MTB	severe
TrojanDownloader:Win32/Troxen!rfn	severe
TrojanDownloader:Win32/Upatre	severe
TrojanDownloader:Win32/Ymacco.BA3C	severe
TrojanDropper:Win32/Pykspa.A	severe
TrojanDropper:Win32/Randrew.A!rfn	severe
TrojanDropper:Win32/Woozlist.B	severe
TrojanSpy:AndroidOS/Anubis!rfn	severe
TrojanSpy:Win32/Loyeetro.B!rfn	severe
TrojanSpy:Win32/Ursnif.AR!MTB	severe
VirTool:MSIL/CryptInject	severe
VirTool:MSIL/Subti.N	severe
VirTool:Win32/CeeInject	severe
VirTool:Win32/DelfInject.gen!rfn	severe
VirTool:Win32/Injector.HY	severe
VirTool:Win32/Occamy.AA	severe
VirTool:Win32/Ymacco.AAE6	severe
Virus:Win32/Grenam.A	severe
Virus:Win32/Grenam.VA!MSR	severe
Virus:Win32/Lurka.A	severe
Worm:AutoIt/Nuqel	severe
Worm:MSIL/Mofin!rfn	severe
Worm:MSIL/Necast.H	severe
Worm:VBS/Jenxcus!rfn	severe
Worm:VBS/Jenxcus.BC	severe
Worm:VBS/Jenxcus.CB	severe
Worm:VBS/Jenxcus.K	severe
Worm:Win32/Ainslot.A	severe
Worm:Win32/AutoRun!atmn	severe
Worm:Win32/Autorun!rfn	severe
Worm:Win32/Autorun.AJA!bit	severe
Worm:Win32/Autorun.NX	severe
Worm:Win32/Babonock!rfn	severe
Worm:Win32/Brontok@mm	severe
Worm:Win32/Dorkbot	severe
Worm:Win32/Dumpy	severe
Worm:Win32/Gamarue	severe
Worm:Win32/Jinra.A	severe
Worm:Win32/Lightmoon	severe
Worm:Win32/Mofksys.NA!rfn	severe
Worm:Win32/Phorpiex.C!rfn	severe
Worm:Win32/Rebhip	severe
Worm:Win32/Rebhip.A	severe
Worm:Win32/Sovfo.A	severe
Worm:Win32/Verst.B	severe
Worm:Win32/Vobfus	severe