Skip to main content

Change logs for security intelligence update version 1.451.333.0

This page lists newly added and updated threat detections included in security intelligence updates for Microsoft Defender Antivirus and other Microsoft antimalware. If you don’t find the latest security intelligence update version in the selector below, please refresh this page or let us know us know through the feedback smiley.

Looking for the latest update? Download the latest update

Released on

6/8/2026 8:12:39 PM

Added threat detections

Name Severity
Behavior:Linux/NetexecWinrm.WT severe
Behavior:Linux/OMIChild.WT severe
Behavior:Win32/AMSI.WinRM.WT severe
Behavior:Win32/GiantAuthor.A!nri severe
Behavior:Win32/SuspAnydeskRMM.A!ofn severe
Behavior:Win32/SuspGpoLogonScriptPayloadDrop.A severe
Behavior:Win32/SuspGpoLogonScriptStaging.A severe
Behavior:Win32/SuspIisWebrootAclGrant.A severe
Behavior:Win32/SuspNextJsRscDeserRce.A severe
Behavior:Win32/SuspNextJsRscDeserRce.A!sms severe
Behavior:Win32/WebSvrWinRM.WT severe
Behavior:Win32/WinRMChild.WT severe
Behavior:Win32/WinRMConfig.WT severe
Behavior:Win32/WinRMCredentialDumps.WT severe
Behavior:Win32/WinRMLateralMove.WT severe
Behavior:Win32/WinRMLateralToolingChild.WT severe
Behavior:Win32/WinRMMultiHop.WT severe
Behavior:Win32/WinRMRecons.WT severe
Behavior:Win32/WinRMRemoteLsassDump.WT severe
Behavior:Win32/WinRMServerEnable.WT severe
Behavior:Win32/WinRMSuspCmd.WT!nri severe
Exploit:Win32/Wwwrootkit.AM severe
Phish:HTML/FakeLogin.PHM!MTB severe
Trojan:BAT/NetLoader.A!AMTB severe
Trojan:HTML/Cryxos.C!AMTB severe
Trojan:HTML/FakeCaptcha.C!AMTB severe
Trojan:HTML/FBJack.C!AMTB severe
Trojan:HTML/Obfuse.C!AMTB severe
Trojan:JS/Iframe!AMTB severe
Trojan:JS/Obfus.SN!MTB severe
Trojan:JS/Obfuse.ARB!MTB severe
Trojan:JS/Obfuse.PBD!MTB severe
Trojan:JS/Redirector.ACU!MTB severe
Trojan:JS/Redirector.ACV!MTB severe
Trojan:JS/Redirector.AEWB!MTB severe
Trojan:JS/Redirector.AFWB!MTB severe
Trojan:JS/Redirector.NXC!MTB severe
Trojan:JS/Redirector.NXD!MTB severe
Trojan:JS/Redirector.SM!MTB severe
Trojan:MSIL/FormBook.RSH!MTB severe
Trojan:MSIL/XWorm.ADWB!MTB severe
Trojan:MSIL/XWorm.GKK!MTB severe
Trojan:PowerShell/Boxter.ABZ!MTB severe
Trojan:PowerShell/Obfuse.DQV!MTB severe
Trojan:PowerShell/Obfuse.NXE!MTB severe
Trojan:VBS/Alien.SLSH!MTB severe
Trojan:VBS/GuLoader.RBU!MTB severe
Trojan:VBS/RemcosRAT.SPY!MTB severe
Trojan:Win32/InfoStealer.RB!AMTB severe
Trojan:Win32/Injector.RA!AMTB severe
Trojan:Win32/KillAV.ABKV!MTB severe
Trojan:Win32/OffLoader.ACWB!MTB severe
Trojan:Win32/SuspNextJsRscDeserRce.A!sms severe
Trojan:Win32/SuspSliverLoader.A severe
Trojan:Win32/SuspSliverLoader.B severe
Trojan:Win32/WinLNK.G!AMTB severe
Trojan:Win64/Aotera.PSX!MTB severe
Trojan:Win64/Convagent!AMTB severe
Trojan:Win64/Doina.PAHP!MTB severe
Trojan:Win64/FakeAlert!MTB severe
Trojan:Win64/Stealer.KK!MTB severe
Trojan:Win64/Vidar.GNX!MTB severe
TrojanDownloader:JS/Powload.RD!AMTB severe
TrojanDownloader:PowerShell/Boxter.JX!MTB severe

Updated threat detections

Name Severity
Adware:Win32/ConvertAd high
Adware:Win32/Tnega high
Backdoor:Linux/Gafgyt!rfn severe
Backdoor:Linux/Mirai!rfn severe
Backdoor:MSIL/Bladabindi!rfn severe
Backdoor:MSIL/Nanocore!rfn severe
Backdoor:PHP/Webshell severe
Backdoor:Win32/Diffyndor!rfn severe
Backdoor:Win32/Padodor.SK!MTB severe
Behavior:Win32/BruteRatel.MK!ems severe
Behavior:Win32/PyArmorSMSTrigger.A severe
Behavior:Win32/SliverBeacon.A!nri severe
Behavior:Win32/SliverC2mTLS.A!nri severe
Behavior:Win32/SliverWebShell.A!nri severe
Behavior:Win32/SusModuleStomp.MK severe
Behavior:Win32/SuspAnydeskInstall.A!ofn severe
Behavior:Win32/SuspAnydeskMsiInstall.A!ofn severe
Behavior:Win32/SuspAnydeskUnattended.A!ofn severe
Behavior:Win32/SuspBrowserAppDirSideLoad.A severe
Behavior:Win32/SuspIisShellSpawn.AM severe
Behavior:Win32/WinRMCredentialAccess.WT severe
Behavior:Win32/WinRMLolbinExec.WT severe
Behavior:Win32/WinRMPayloadDrop.WT severe
Behavior:Win64/CoreFlow.A severe
BrowserModifier:MSIL/MediaArena high
BrowserModifier:Win32/MediaArena high
BrowserModifier:Win32/Shafmia high
DDoS:Win32/Nitol!rfn severe
Exploit:Linux/Multiverze severe
Exploit:O97M/CVE-2017-0199.SZE!MTB severe
Exploit:Win32/Tudimons.A!dha severe
HackTool:MSIL/Lazy.MK!MTB high
HackTool:PowerShell/BloodHound high
HackTool:PowerShell/DumpDBCreds!rfn high
HackTool:PowerShell/Powerpuff.A!MTB high
HackTool:PowerShell/PowerSploit.E high
HackTool:Python/Impacket!AMTB high
HackTool:Win32/Agent high
HackTool:Win32/AutoKMS!MTB high
HackTool:Win32/crack high
HackTool:Win32/Crack!MTB high
HackTool:Win32/CVE-2021-26855!rfn high
HackTool:Win32/Keygen high
HackTool:Win32/Keygen!AMTB high
HackTool:Win32/Mailpassview!rfn high
HackTool:Win32/Malgent!MSR high
HackTool:Win32/Meterpreter high
HackTool:Win32/Patcher!AMTB high
HackTool:Win32/Patcher!MTB high
HackTool:Win32/RemoteAdmin!rfn high
HackTool:Win32/Tnega high
Misleading:Win32/Lodi high
PWS:MSIL/Stealer!rfn severe
Ransom:Win32/Basta!rfn severe
Ransom:Win32/BastaLoader!rfn severe
Ransom:Win32/Filecoder!rfn severe
Ransom:Win32/Genasom!rfn severe
Ransom:Win32/LockBit!MTB severe
Ransom:Win32/WannaCrypt!rfn severe
Ransom:Win64/Akira!rfn severe
Ransom:Win64/Basta!rfn severe
Ransom:Win64/LockBit!rfn severe
Ransom:Win64/Rook!rfn severe
SupportScam:Win32/Screcwon!AMTB severe
Trojan:AndroidOS/AVerseFalc!rfn severe
Trojan:BAT/LummaStealer severe
Trojan:BAT/Starter.G!lnk severe
Trojan:HTML/Phish!rfn severe
Trojan:HTML/Phish.AHA!MTB severe
Trojan:HTML/Phish.KKS!MTB severe
Trojan:HTML/Qakbot!rfn severe
Trojan:HTML/Redirector.C!AMTB severe
Trojan:HTML/SLoad.D!AMTB severe
Trojan:JS/FormBook!MTB severe
Trojan:JS/Latrodectus!rfn severe
Trojan:JS/Obfus!MTB severe
Trojan:JS/Obfuscator!MTB severe
Trojan:JS/Obfuse.PBD!MTB severe
Trojan:JS/Qakbot!rfn severe
Trojan:JS/RedHulud.LTSN!MTB severe
Trojan:JS/Redirector.AEWB!MTB severe
Trojan:JS/Redirector.AFWB!MTB severe
Trojan:JS/Redirector.ARB!MTB severe
Trojan:JS/Redirector.HNAA!MTB severe
Trojan:Linux/Multiverze!rfn severe
Trojan:Linux/SAgnt!MSR severe
Trojan:MacOS/Multiverze!rfn severe
Trojan:MacOS/NukeSpeed!AMTB severe
Trojan:MSIL/AgentTesla.OI!rfn severe
Trojan:MSIL/AsyncRAT.SX!MTB severe
Trojan:MSIL/Barys.ARR!MTB severe
Trojan:MSIL/CoinMiner!rfn severe
Trojan:MSIL/DllInject!rfn severe
Trojan:MSIL/Exnet.ARR!MTB severe
Trojan:MSIL/Heracles!MTB severe
Trojan:MSIL/Lazy.BAC!MTB severe
Trojan:MSIL/QuasarRat!rfn severe
Trojan:MSIL/Tedy.ARR!MTB severe
Trojan:MSIL/Zilla!MTB severe
Trojan:MSIL/Zusy!MTB severe
Trojan:MSIL/Zusy.ARR!MTB severe
Trojan:MSIL/Zusy.KK!MTB severe
Trojan:O97M/DDownloader!rfn severe
Trojan:PowerShell/Boxter.PGBA!MTB severe
Trojan:PowerShell/Obfuse.DQY!MTB severe
Trojan:PowerShell/Phish.LR!MTB severe
Trojan:PowerShell/ReverseShell.HNAA!MTB severe
Trojan:PowerShell/UnicornBypass.A severe
Trojan:Python/Bobik.EB!MTB severe
Trojan:Python/Tedy!MTB severe
Trojan:Script/Malgent!MSR severe
Trojan:Script/Multiverze!rfn severe
Trojan:VBS/Emotet!rfn severe
Trojan:VBS/Malgent!MSR severe
Trojan:VBS/Pterodo!rfn severe
Trojan:Win32/Acll!rfn severe
Trojan:Win32/Alevaul!rfn severe
Trojan:Win32/AutoitInject.SPB!MTB severe
Trojan:Win32/Azorult!rfn severe
Trojan:Win32/Casdet!rfn severe
Trojan:Win32/Cerber!rfn severe
Trojan:Win32/Chanitor.C severe
Trojan:Win32/Copak.GPX!MTB severe
Trojan:Win32/DllInject!rfn severe
Trojan:Win32/Doina.MBHT!MTB severe
Trojan:Win32/Egairtigado!rfn severe
Trojan:Win32/Fareit.VB!MTB severe
Trojan:Win32/Fauppod!rfn severe
Trojan:Win32/Flystudio!MTB severe
Trojan:Win32/FlyStudio.PGC!MTB severe
Trojan:Win32/FormBook!rfn severe
Trojan:Win32/Grandoreiro!rfn severe
Trojan:Win32/GuLoader!rfn severe
Trojan:Win32/ICLoader!rfn severe
Trojan:Win32/Kepavll!rfn severe
Trojan:Win32/Leonem!rfn severe
Trojan:Win32/LNKRunner.RD!AMTB severe
Trojan:Win32/Malgent severe
Trojan:Win32/Malgent!MSR severe
Trojan:Win32/MereTam!rfn severe
Trojan:Win32/NitrogenLdr!rfn severe
Trojan:Win32/OffLoader!MTB severe
Trojan:Win32/Oyester!rfn severe
Trojan:Win32/Pikabot!rfn severe
Trojan:Win32/Pomal!rfn severe
Trojan:Win32/Primarypass!rfn severe
Trojan:Win32/Qwexlafiba!rfn severe
Trojan:Win32/Ravartar!rfn severe
Trojan:Win32/RedLineStealer!MTB severe
Trojan:Win32/Salgorea.SLWO!MTB severe
Trojan:Win32/Seheq!rfn severe
Trojan:Win32/Sehyioa.A!cl severe
Trojan:Win32/ShortSeek!rfn severe
Trojan:Win32/Skeeyah severe
Trojan:Win32/Supma.A severe
Trojan:Win32/Suschil!rfn severe
Trojan:Win32/Tedy!MTB severe
Trojan:Win32/Tiggre!rfn severe
Trojan:Win32/VMProtect severe
Trojan:Win32/XWorm!rfn severe
Trojan:Win32/XWorm.A!AMTB severe
Trojan:Win32/Yomal!rfn severe
Trojan:Win32/Zbot.EAEN!MTB severe
Trojan:Win32/Zbot.SD!MTB severe
Trojan:Win32/Znyonm!rfn severe
Trojan:Win32/Zusy!MTB severe
Trojan:Win32/Zusy!rfn severe
Trojan:Win64/AVTamper!rfn severe
Trojan:Win64/BlackWidow!rfn severe
Trojan:Win64/BruteRatel.MK!!BruteRatel.MK!ems severe
Trojan:Win64/BumbleBee!rfn severe
Trojan:Win64/CobaltStrike!rfn severe
Trojan:Win64/CoinMiner!rfn severe
Trojan:Win64/CryptInject!rfn severe
Trojan:Win64/Dapato.ARR!MTB severe
Trojan:Win64/Donut!rfn severe
Trojan:Win64/Emotet!MTB severe
Trojan:Win64/Emotet!rfn severe
Trojan:Win64/Emotetcrypt!rfn severe
Trojan:Win64/EmotetPacker!rfn severe
Trojan:Win64/FakeAlert!MTB severe
Trojan:Win64/IcedID!rfn severe
Trojan:Win64/Injuke!MTB severe
Trojan:Win64/Lazy!MTB severe
Trojan:Win64/Malgent!MSR severe
Trojan:Win64/Maloder!rfn severe
Trojan:Win64/Midie!MTB severe
Trojan:Win64/Mikey!MTB severe
Trojan:Win64/Oyster!rfn severe
Trojan:Win64/QQPass!MTB severe
Trojan:Win64/Sheheq!rfn severe
Trojan:Win64/Tedy!MTB severe
Trojan:Win64/Tedy.A!AMTB severe
Trojan:Win64/Tedy.KK!MTB severe
Trojan:Win64/Vidar!MTB severe
Trojan:Win64/VMProtect!MTB severe
Trojan:Win64/XMRig.PA!MTB severe
Trojan:Win64/ZLoaderE!rfn severe
Trojan:Win64/Zusy!MTB severe
Trojan:Win64/Zusy!rfn severe
TrojanDownloader:BAT/Phish!rfn severe
TrojanDownloader:JS/Qakbot!rfn severe
TrojanDownloader:O97M/Donoff!MSR severe
TrojanDownloader:O97M/Emotet!rfn severe
TrojanDownloader:O97M/Emotet.RKC!MTB severe
TrojanDownloader:O97M/Emotet.RPET!MTB severe
TrojanDownloader:Script/Malgent.SST!MSR severe
TrojanDownloader:VBS/Obfuse!MTB severe
TrojanDownloader:Win32/Fragtor.ARAZ!MTB severe
TrojanDownloader:Win32/Silcon!rfn severe
TrojanDropper:PowerShell/PowerSploit.S!MSR severe
TrojanDropper:Win32/Malgent!MSR severe
VirTool:Win32/AmsiTamper severe
VirTool:WinNT/Rootkitdrv!rfn severe
Worm:AutoIt/Nuqel!rfn severe
Worm:Win32/AutoRun.XXY!bit severe
Worm:Win32/Citeary!rfn severe
Worm:Win32/Ganelp.AF!MTB severe