시그니처 리스트, Signature List
Created with Highcharts 4.2.5'키워드' 시그리처2025/05/19Ransomware : 515 (3.2%) Backdoor : 436 (2.7%) Webshell : 94 (0.6%) Sipvicious : 6 (0.0%) DDoS : 166 (1.0%) Trojan : 6,289 (39.2%) Malware : 1,425 (8.9%) BruteForce : 48 (0.3%) Sql Injection : 4,316 (26.9%) Spyware : 533 (3.3%) Tor : 839 (5.2%) Scan : 392 (2.4%) ADware : 140 (0.9%) Mobile : 243 (1.5%) CnC Server : 594 (3.7%)
번호날짜ID시그니처 (Total Ruleset: 27,111개)
24,0112016/12/21 2023670  ET INFO IE7UA No Cookie No Referer;  
24,0102016/12/21 2023665  ET TROJAN APT28 DealersChoice DNS Lookup; [1,2
24,0092016/12/21 2023672  ET TROJAN JS/WSF Downloader Dec 08 2016 M3;  
24,0082016/12/21 2023671  ET TROJAN JS/WSF Downloader Dec 08 2016 M2;  
24,0072016/12/21 2023667  ET TROJAN APT28/SEDNIT Uploader Variant DNS Lookup; [1,2
24,0062016/12/21 2023666  ET TROJAN APT28 DealersChoice DNS Lookup;  
24,0052016/12/21 2023668  ET INFO Unconfigured nginx Access;  
24,0042016/12/21 2023658  ET TROJAN APT28 DealersChoice DNS Lookup;  
24,0032016/12/21 2023673  ET TROJAN JS/WSF Downloader Dec 08 2016 M4;  
24,0022016/12/21 2023661  ET TROJAN APT28 DealersChoice DNS Lookup; [1,2
24,0012016/12/21 2023663  ET TROJAN APT28 DealersChoice DNS Lookup; [1,2
24,0002016/12/21 2023659  ET TROJAN APT28 DealersChoice DNS Lookup; [1,2
23,9992016/12/21 2023669  ET TROJAN Click Fraud Checkin;  
23,9982016/12/21 2023660  ET TROJAN APT28 DealersChoice DNS Lookup; [1,2
23,9972016/12/21 2023662  ET TROJAN APT28 DealersChoice DNS Lookup; [1,2
23,9962016/12/18 2023656  ET TROJAN TeleBots VBS Backdoor CnC Beacon 2; [1
23,9952016/12/18 2023657  ET CURRENT_EVENTS Microsoft Edge SmartScreen Page Spoof Attempt Dec 16 2016; [1
23,9942016/12/17 2023653  ET TROJAN TeleBots BCS-server User-Agent; [1
23,9932016/12/17 2023654  ET TROJAN TeleBots VBS Backdoor CnC Beacon 1; [1
23,9922016/12/17 2023655  ET TROJAN Ransomware Maktub .onion Payment Domain (maktubebz6z6cgtw);  
23,9912016/12/17 2023652  ET TROJAN TeleBots BCS-server CnC Beacon; [1
23,9902016/12/15 2023644  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (svnservices .com); [1,2
23,9892016/12/15 2023634  ET TROJAN Mirai Botnet Domain Observed; [1
23,9882016/12/15 2023646  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (windriversupport .com); [1,2
23,9872016/12/15 2023650  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (true-crypte .website); [1,2
23,9862016/12/15 2023645  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (mynetenergy .com); [1,2
23,9852016/12/15 2023642  ET TROJAN NEODYMIUM Wingbird DNS Lookup (srv602 .ddns.net); [1
23,9842016/12/15 2023647  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (truecrypte .org); [1,2
23,9832016/12/15 2023649  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (jourrapid .com); [1,2
23,9822016/12/15 2023630  ET TROJAN Mirai Botnet Domain Observed; [1
23,9812016/12/15 2023640  ET INFO Noction IRP Probe; [1
23,9802016/12/15 2023633  ET TROJAN Mirai Botnet Domain Observed; [1
23,9792016/12/15 2023648  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (edicupd002 .com); [1,2
23,9782016/12/15 2023651  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (myrappid .com); [1,2
23,9772016/12/15 2023632  ET TROJAN Mirai Botnet Domain Observed; [1
23,9762016/12/15 2023635  ET TROJAN Mirai Botnet Domain Observed; [1
23,9752016/12/15 2023643  ET TROJAN PROMETHIUM/StrongPity DNS Lookup (updatesync .com); [1,2
23,9742016/12/15 2023637  ET TROJAN Mirai Botnet Domain Observed; [1
23,9732016/12/15 2023639  ET TROJAN ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2); [1
23,9722016/12/15 2023641  ET TROJAN NEODYMIUM Wingbird DNS Lookup (srv601 .ddns.net); [1
23,9712016/12/15 2023638  ET CURRENT_EVENTS Common Phishing Redirect Dec 13 2016;  
23,9702016/12/15 2023636  ET TROJAN Mirai Botnet Domain Observed; [1
23,9692016/12/15 2023631  ET TROJAN Mirai Botnet Domain Observed; [1
23,9682016/12/15 2023629  ET INFO Suspicious Empty SSL Certificate - Observed in Cobalt Strike;  
23,9672016/12/14 2023628  ET EXPLOIT Netgear R7000 Command Injection Exploit; [1
23,9662016/12/14 2023627  ET TROJAN Ransomware/Cerber Checkin M3 (16);  
23,9652016/12/14 2023611  ET TROJAN Backdoor family PCRat/Gh0st CnC traffic (OUTBOUND) 107; [1,2
23,9642016/12/14 2023614  ET TROJAN Ransomware/Cerber Checkin M3 (3);  
23,9632016/12/14 2023605  ET TROJAN Mirai Botnet Domain Observed; [1
23,9622016/12/14 2023608  ET TROJAN Mirai Botnet Domain Observed; [1
< 61  62  63  64  65  66  67  68  69  70 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.