Attention: We will be transitioning to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access.
291 entries found.
Displaying page 3
of 15.
Virus:Win32/Cutwail.C
Virus:Win32/Cutwail.C is a virus that patches the file WINLOGON.EXE - a system file for Windows that manages Windows logon. This modification is used to load the file ws2_32.dll:fork2.
Alert level:
severe
Virus:Win32/Cutwail.D
Virus:Win32/Cutwail.D is a virus that patches the file WINLOGON.EXE - a system file for Windows that manages Windows logon. This modification is used to load the file ws2_32.dll:fork2.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.S
TrojanDownloader:Win32/Cutwail.S is a trojan that drops malicious files onto an affected machine and contacts a remote IP address.
Alert level:
severe
Trojan:WinNT/Cutwail.AK
Trojan:Win32/Cutwail.AK!sys is a trojan that usually arrives in a system with TrojanDownloader:Win32/Cutwail.S. Its primary function is to inject TrojanDownloader:Win32/Cutwail.S into the services.exe process in order to bypass the firewall.
Alert level:
severe
TrojanDropper:Win32/Cutwail.S
TrojanDropper:Win32/Cutwail.S is a variant of a Trojan family that drops a system driver to conceal itself, and downloads additional malicious programs onto the infected computer.
Alert level:
severe
VirTool:WinNT/Cutwail.M
Cutwail is a trojan which is able to download and executes arbitrary files. Downloaded files may be executed from disk or injected directly into another process. Whilst the functionality of the files that are downloaded may change, Cutwail usually downloads a trojan which is able to send spam. Cutwail also employs rootkit and other defensive techniques to avoid detection and removal.
VirTool:WinNT/Cutwail.M is a kernel-mode component used by Cutwail malware family. It contains functionality drop files and to run in Windows safe mode and Windows safe mode with network support.
Alert level:
severe
Virus:Win32/Cutwail.G
Virus:Win32/Cutwail.G is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected machine. In general, the Cutwail family is used to compromise machines and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected machine to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest e-mail addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, rootkits and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.BI
TrojanDownloader:Win32/Cutwail.BI is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.BK
TrojanDownloader:Win32/Cutwail.BK is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.BJ
TrojanDownloader:Win32/Cutwail.BJ is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.BL
TrojanDownloader:Win32/Cutwail.BL is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.BB
TrojanDownloader:Win32/Cutwail.BB is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected machine. In general, the Cutwail family is used to compromise machines and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected machine to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest e-mail addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
VirTool:WinNT/Cutwail.K
Cutwail is a trojan which is able to download and executes arbitrary files. Downloaded files may be executed from disk or injected directly into another process. Whilst the functionality of the files that are downloaded may change, Cutwail usually downloads a trojan which is able to send spam. Cutwail also employs rootkit and other defensive techniques to avoid detection and removal.
VirTool:WinNT/Cutwail.K is a device driver component (rootkit) used by Cutwail malware family.
It contains functionality to modify the system's winlogon.exe.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.BZ
Windows Defender Antivirus detects and removes this threat.
This threat can download other malware onto your PC.
See the Win32/Cutwail entry for more information.
Alert level:
severe
VirTool:WinNT/Cutwail.gen!F
VirTool:WinNT/Cutwail.gen!F is a generic detection for a driver component of Win32/Cutwail - a family of trojans which downloads and executes arbitrary files.
Alert level:
severe
TrojanDownloader:Win32/Cutwail.gen!B
TrojanDownloader:Win32/Cutwail.gen!B is a trojan that injects another malware into the svchost.exe process to be able to bypass the firewall. It also creates another device, which is used to communicate with other malware components. It may also connect to various IP addresses, presumably to download other malware.
Alert level:
severe
TrojanDropper:Win32/Cutwail.AQ
Trojan:Win32/Cutwail.AQ is a trojan that drops another malware into the system.
Alert level:
severe
TrojanDropper:Win32/Cutwail.U.dr
TrojanDropper:Win32/Cutwail.U.dr is a dropper for TrojanDropper:Win32/Cutwail.U.
Alert level:
severe
VirTool:WinNT/Cutwail.gen!D
VirTool:Win32/Cutwail.gen!D is a generic detection for a driver component of Win32/Cutwail - a family of trojans which downloads and executes arbitrary files. Downloaded files may be executed from disk or injected directly into other processes. Whilst the functionality of the files that are downloaded is variable, Cutwail usually downloads a trojan which is able to send spam. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
VirTool:WinNT/Cutwail.J
VirTool:WinNT/Cutwail.J is the detection for the driver component that is a member of the Win32/Alureon family.
Alert level:
severe