시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,5112015/07/30 2021549  ET TROJAN CryptoLocker .onion Proxy Domain (vacdgwaw5djp5hmu);  
21,5102015/07/30 2021551  ET TROJAN Critroni .onion Proxy Domain; [1
21,5092015/07/30 2021550  ET POLICY External IP Lookup trackip.net;  
21,5082015/07/30 2021545  ET TROJAN EncryptorRaas .onion Proxy Domain;  
21,5072015/07/30 2021546  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC); [1
21,5062015/07/30 2021547  ET TROJAN EncryptorRaas .onion Proxy Domain;  
21,5052015/07/30 2021548  ET MALWARE OSX ADWARE/Mackeeper Checkin;  
21,5042015/07/30 2021543  ET CURRENT_EVENTS ScanBox Jun 06 2015 M2 T1;  
21,5032015/07/30 2021542  ET CURRENT_EVENTS ScanBox Jun 06 2015 M1 T1;  
21,5022015/07/29 2021541  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,5012015/07/29 2021539  ET CURRENT_EVENTS Possible Successful PHISH - function Validate;  
21,5002015/07/29 2021540  ET CURRENT_EVENTS Possible Successful PHISH - function Validate;  
21,4992015/07/29 2021534  ET TROJAN Poshcoder .onion Proxy Domain (hlvumvvclxy2nw7j);  
21,4982015/07/29 2021535  ET CURRENT_EVENTS Google Drive Phish - Landing Page July 24 M1;  
21,4972015/07/29 2021536  ET CURRENT_EVENTS Google Drive Phish - Landing Page July 24 M2;  
21,4962015/07/29 2021537  ET CURRENT_EVENTS Possible Successful PHISH - function Validate;  
21,4952015/07/29 2021538  ET CURRENT_EVENTS Possible Successful PHISH - function Validate;  
21,4942015/07/29 2021533  ET POLICY Possible External IP Lookup myip.kz;  
21,4932015/07/25 2021531  ET TROJAN W2KM_BARTALEX Downloading Payload M2 (set);  
21,4922015/07/25 2021532  ET TROJAN W2KM_BARTALEX Downloading Payload M2;  
21,4912015/07/25 2021530  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,4902015/07/25 2021529  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC); [1
21,4892015/07/24 2021528  ET TROJAN KINS/ZeusVM Variant Retrieving Config;  
21,4882015/07/24 2021517  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,4872015/07/24 2021521  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC); [1
21,4862015/07/24 2021525  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,4852015/07/24 2021526  ET TROJAN Linux/ChinaZ DDoS Bot Checkin 3; [1
21,4842015/07/24 2021527  ET TROJAN Possible Zberp receiving config via image file (steganography) 3; [1
21,4832015/07/24 2021519  ET TROJAN Likely Dridex SSL Cert;  
21,4822015/07/24 2021512  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC); [1
21,4812015/07/24 2021524  ET TROJAN KINS/ZeusVM Variant CnC Beacon;  
21,4802015/07/24 2021507  ET CURRENT_EVENTS NullHole URI Struct Jul 22 2015 M2;  
21,4792015/07/24 2021522  ET CURRENT_EVENTS Fake AV Phone Scam Landing July 23 2015;  
21,4782015/07/24 2021523  ET TROJAN PoisonIvy HTTP CnC Beacon; [1
21,4772015/07/24 2021520  ET TROJAN KINS/ZeusVM Variant CnC Beacon;  
21,4762015/07/24 2021518  ET TROJAN Likely Dridex SSL Cert;  
21,4752015/07/24 2021516  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,4742015/07/24 2021509  ET CURRENT_EVENTS Angler EK XTEA encrypted binary (28);  
21,4732015/07/24 2021511  ET POLICY Edwards Packed proxy.pac from 724sky;  
21,4722015/07/24 2021510  ET CURRENT_EVENTS Angler EK XTEA encrypted binary (29);  
21,4712015/07/24 2021513  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC); [1
21,4702015/07/24 2021514  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC); [1
21,4692015/07/24 2021515  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,4682015/07/24 2021508  ET CURRENT_EVENTS NullHole URI Struct Jul 22 2015 M3;  
21,4672015/07/24 2021506  ET TROJAN Sednit Connectivity Check 0 Byte POST; [1
21,4662015/07/23 2021505  ET TROJAN Java/QRat Receiving No Commands;  
21,4652015/07/23 2021501  ET TROJAN Jiripbot CnC 1; [1,2
21,4642015/07/23 2021503  ET TROJAN Java/QRat Checkin;  
21,4632015/07/23 2021504  ET TROJAN Java/QRat Receiving Command 1;  
21,4622015/07/23 2021502  ET TROJAN Jiripbot CnC 2; [1,2
< 111  112  113  114  115  116  117  118  119  120 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.