시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
22,0112015/11/03 2021879  ET TROJAN Linux/dtool IRC Command (STOP); [1
22,0102015/11/01 2022013  ET CURRENT_EVENTS Fake Video Player Update Scam Oct 30;  
22,0092015/11/01 2022012  ET CURRENT_EVENTS Fake Virus Phone Scam Audio Oct 30;  
22,0082015/11/01 2022011  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Oct 30;  
22,0072015/10/31 2022010  ET CURRENT_EVENTS Fake AV Phone Scam Landing Oct 29; [1
22,0062015/10/31 2022009  ET CURRENT_EVENTS Possible Malicious Redirect Leading to EK Oct 29;  
22,0052015/10/29 2022006  ET TROJAN Tesla Keylogger Report SMTP;  
22,0042015/10/29 2022007  ET TROJAN MWI Maldoc Load Payload; [1
22,0032015/10/29 2022004  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
22,0022015/10/29 2022008  ET TROJAN MWI Maldoc Stats Callout Oct 28;  
22,0012015/10/29 2022005  ET TROJAN LummoX Keylogger Report SMTP;  
22,0002015/10/27 2022002  ET TROJAN LuminosityLink - Data Channel Client Request;  
21,9992015/10/27 2022003  ET TROJAN LuminosityLink - Data Channel Server Response;  
21,9982015/10/27 2022001  ET CURRENT_EVENTS Evil Redirector Leading to EK Oct 26 2015;  
21,9972015/10/27 2021999  ET CURRENT_EVENTS Possible Nuclear EK Landing URI Struct Oct 26 2015;  
21,9962015/10/27 2022000  ET TROJAN Duuzer Checkin; [1
21,9952015/10/24 2021997  ET POLICY External IP Lookup api.ipify.org;  
21,9942015/10/24 2021996  ET TROJAN Backdoor.Win32.DarkComet Screenshot Upload Successful;  
21,9932015/10/24 2021994  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9922015/10/24 2021995  ET TROJAN Win32/Necurs Common POST Header Structure;  
21,9912015/10/23 2021993  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
21,9902015/10/23 2021992  ET WEB_SPECIFIC_APPS Possible Joomla SQLi Attempt; [1
21,9892015/10/22 2021991  ET CURRENT_EVENTS Fake Java Installer Landing Page Oct 21; [1
21,9882015/10/22 2021989  ET CURRENT_EVENTS Angler encrypted payload Oct 19 (5);  
21,9872015/10/22 2021990  ET CURRENT_EVENTS Angler encrypted payload Oct 19 (6);  
21,9862015/10/22 2021985  ET CURRENT_EVENTS Possible click2play bypass Oct 19 2015 as observed in PawnStorm; [1
21,9852015/10/22 2021986  ET CURRENT_EVENTS Possible click2play bypass Oct 19 2015 B64 1; [1
21,9842015/10/22 2021988  ET CURRENT_EVENTS Possible click2play bypass Oct 19 2015 B64 3; [1
21,9832015/10/22 2021987  ET CURRENT_EVENTS Possible click2play bypass Oct 19 2015 B64 2; [1
21,9822015/10/22 2021982  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Retefe CnC); [1
21,9812015/10/22 2021983  ET POLICY Possible ethereum traffic;  
21,9802015/10/22 2021984  ET MALWARE OSX/Fake Flash Player Download Oct 20;  
21,9792015/10/22 2021978  ET TROJAN NetWire Variant - Client KeepAlive; [1,2
21,9782015/10/22 2021981  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC); [1
21,9772015/10/22 2021980  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex);  
21,9762015/10/22 2021976  ET TROJAN NetWire Variant - Client Hello; [1,2
21,9752015/10/22 2021977  ET TROJAN NetWire Variant - Server Hello; [1,2
21,9742015/10/22 2021979  ET TROJAN NetWire Variant - Server Directory Listing Request; [1,2
21,9732015/10/21 2021975  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Oct 19 M5;  
21,9722015/10/21 2021970  ET CURRENT_EVENTS Angler encrypted payload Oct 19 (1);  
21,9712015/10/21 2021971  ET CURRENT_EVENTS Angler encrypted payload Oct 19 (2);  
21,9702015/10/21 2021968  ET CURRENT_EVENTS Fake Virus Phone Scam Redirector Oct 19 M2;  
21,9692015/10/21 2021969  ET CURRENT_EVENTS Job314/Neutrino Reboot EK Landing Oct 19 2015;  
21,9682015/10/21 2021973  ET CURRENT_EVENTS Angler encrypted payload Oct 19 (4);  
21,9672015/10/21 2021972  ET CURRENT_EVENTS Angler encrypted payload Oct 19 (3);  
21,9662015/10/21 2021974  ET CURRENT_EVENTS Fake Virus Phone Scam Redirector Oct 19 M3;  
21,9652015/10/21 2021967  ET CURRENT_EVENTS Fake Virus Phone Scam Redirector Oct 19 M1;  
21,9642015/10/21 2021965  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Oct 19 M3;  
21,9632015/10/21 2021966  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Oct 19 M4;  
21,9622015/10/21 2021963  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Oct 19 M1;  
< 101  102  103  104  105  106  107  108  109  110 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.