시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,6112015/08/20 2021650  ET TROJAN APT Cheshire Cat DNS Lookup (apartmentsin-paris.com); [1
21,6102015/08/20 2021649  ET TROJAN APT Cheshire Cat DNS Lookup (franceholidayapartments.com); [1
21,6092015/08/20 2021647  ET TROJAN APT Cheshire Cat DNS Lookup (holidayapartments-Paris.com); [1
21,6082015/08/20 2021648  ET TROJAN APT Cheshire Cat DNS Lookup (paris-holidayapartments.com); [1
21,6072015/08/20 2021646  ET TROJAN APT Cheshire Cat DNS Lookup (euro-rafting.com); [1
21,6062015/08/20 2021645  ET TROJAN APT Cheshire Cat DNS Lookup (holidayapartments4you.com); [1
21,6052015/08/20 2021644  ET EXPLOIT Websense Content Gateway submit_net_debug.cgi cmd_param Param Buffer Overflow Attempt; [1
21,6042015/08/19 2021643  ET MALWARE W32/Jeefo Adware CnC Beacon 3;  
21,6032015/08/19 2021642  ET TROJAN Ponomocup Post Infection DNS Lookup messagewild;  
21,6022015/08/19 2021641  ET TROJAN Fareit/Pony Loader User-Agent;  
21,6012015/08/19 2021637  ET CURRENT_EVENTS CottonCastle/Niteris EK Secondary Landing Aug 17 2015;  
21,6002015/08/19 2021638  ET CURRENT_EVENTS CottonCastle/Niteris EK Landing Aug 17 2015;  
21,5992015/08/19 2021640  ET CURRENT_EVENTS CottonCastle/Niteris EK Exploit URI Struct Aug 17 2015;  
21,5982015/08/19 2021639  ET CURRENT_EVENTS CottonCastle/Niteris EK Secondary Landing URI Struct Aug 17 2015;  
21,5972015/08/16 2021636  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,5962015/08/16 2021635  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi); [1
21,5952015/08/16 2021633  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi); [1
21,5942015/08/16 2021632  ET TROJAN Sharik/Smoke CnC Beacon 3;  
21,5932015/08/16 2021628  ET TROJAN Hacking Team Android Implant Exfiltration; [1
21,5922015/08/16 2021630  ET TROJAN MS Terminal Server Single Character Login, possible Morto inbound;  
21,5912015/08/16 2021634  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Redyms CnC); [1
21,5902015/08/16 2021631  ET TROJAN Sharik/Smoke CnC Beacon 2;  
21,5892015/08/16 2021629  ET TROJAN Hacking Team Implant Exfiltration; [1
21,5882015/08/16 2021627  ET TROJAN Hacking Team Scout Windows Implant Exfiltration; [1
21,5872015/08/16 2021626  ET TROJAN Hacking Team Elite Windows Implant Exfiltration; [1
21,5862015/08/16 2021625  ET TROJAN W2KM_BARTALEX August 11 2015;  
21,5852015/08/14 2021624  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,5842015/08/14 2021623  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,5832015/08/14 2021621  ET TROJAN Possible Dridex SSL Cert Aug 12 2015;  
21,5822015/08/14 2021622  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
21,5812015/08/14 2021619  ET MALWARE W32/Jeefo Adware CnC Beacon 2;  
21,5802015/08/14 2021620  ET CURRENT_EVENTS Nuclear EK Exploit URI Struct Aug 12;  
21,5792015/08/14 2021618  ET MALWARE W32/Jeefo Adware CnC Beacon;  
21,5782015/08/14 2021617  ET MOBILE_MALWARE Android.Trojan.SLocker.DZ Checkin 2; [1
21,5772015/08/14 2021615  ET CURRENT_EVENTS Dridex Downloader SSL Certificate;  
21,5762015/08/14 2021616  ET TROJAN PSEmpire Checkin via POST; [1
21,5752015/08/13 2021614  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
21,5742015/08/13 2021606  ET EXPLOIT Possible Firefox PDF.js Same-Origin-Bypass CVE-2015-4495 M2; [1
21,5732015/08/13 2021613  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
21,5722015/08/12 2021612  ET TROJAN Possible DarkHotel Landing M3; [1
21,5712015/08/12 2021603  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,5702015/08/12 2021610  ET TROJAN DarkHotel Initial Beacon; [1
21,5692015/08/12 2021611  ET TROJAN Possible DarkHotel Landing M2; [1
21,5682015/08/12 2021609  ET TROJAN Possible DarkHotel Landing M1; [1
21,5672015/08/12 2021605  ET TROJAN Win32.VBKrypt.vquj Checkin;  
21,5662015/08/12 2021601  ET EXPLOIT Possible Firefox PDF.js Same-Origin-Bypass CVE-2015-4495 M1;  
21,5652015/08/12 2021604  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5642015/08/12 2021608  ET TROJAN Win32.Androm.gnlb Checkin;  
21,5632015/08/12 2021607  ET CURRENT_EVENTS Potential W32/Dridex Alphanumeric Download Pattern;  
21,5622015/08/12 2021602  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
< 111  112  113  114  115  116  117  118  119  120 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.