시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
17,2112015/01/20 2020183  ET POLICY DNS Query to .onion proxy Domain (torforall.com); [1
17,2102015/01/20 2020182  ET TROJAN Cryptowall 3.0 .onion Proxy Domain; [1
17,2092015/01/20 2020181  ET TROJAN WIN32/KOVTER.B Checkin;  
17,2082015/01/20 2020180  ET CURRENT_EVENTS Nuclear EK Landing Jan 14 2014;  
17,2072015/01/20 2020179  ET TROJAN Brontok User-Agent Detected (Rivest);  
17,2062015/01/20 2020178  ET TROJAN Skeleton Key Filename in SMB Traffic (Unicode); [1
17,2052015/01/20 2020177  ET TROJAN Skeleton Key Filename in SMB Traffic (Unicode); [1
17,2042015/01/20 2020176  ET TROJAN Skeleton Key Filename in SMB Traffic (Unicode); [1
17,2032015/01/20 2020175  ET TROJAN Skeleton Key Filename in SMB Traffic (ASCII); [1
17,2022015/01/20 2020174  ET TROJAN Skeleton Key Filename in SMB Traffic (ASCII); [1
17,2012015/01/20 2020173  ET TROJAN Skeleton Key Filename in SMB Traffic (ASCII); [1
17,2002015/01/20 2020172  ET TROJAN Known Sinkhole Response Header CERT.PL;  
17,1992015/01/20 2020171  ET TROJAN Hong Kong SWC Attack DNS Lookup (aoemvp.com); [1
17,1982015/01/20 2020170  ET TROJAN Possible Office Doc with Embedded VBA containing Reverse Meterpreter Shell; [1
17,1972015/01/20 2020169  ET TROJAN Hong Kong SWC Attack PcClient CnC Beacon; [1
17,1962015/01/20 2020168  ET TROJAN Win32/Spy.Obator .onion Proxy Domain; [1
17,1952015/01/20 2020167  ET TROJAN Linux/DDoS.M Admin console status; [1
17,1942015/01/20 2020166  ET TROJAN Linux/DDoS.M LOLNOGTFO command; [1
17,1932015/01/20 2020165  ET TROJAN Linux/DDoS.M KILLATTK command; [1
17,1922015/01/20 2020164  ET TROJAN Linux/DDoS.M SCANNER command; [1
17,1912015/01/20 2020163  ET TROJAN Linux/DDoS.M GETLOCALIP command; [1
17,1902015/01/20 2020162  ET TROJAN Linux/DDoS.M JUNK command; [1
17,1892015/01/20 2020161  ET CURRENT_EVENTS Upatre Firefox/Chrome Redirector Receiving Payload Jan 9 2015;  
17,1882015/01/20 2020160  ET CURRENT_EVENTS Upatre IE Redirector Receiving Payload Jan 9 2015;  
17,1872015/01/20 2020159  ET CURRENT_EVENTS Upatre Redirector Jan 9 2015;  
17,1862015/01/20 2020158  ET TROJAN Mini/Cosmic Duke variant FTP upload; [1
17,1852015/01/20 2020157  ET TROJAN Win32/Emotet.C Variant Checkin;  
17,1842015/01/20 2020156  ET TROJAN Win32/Emotet.C Checkin;  
17,1832015/01/20 2020155  ET TROJAN Win32/Recslurp.D C2 Response;  
17,1822015/01/20 2020154  ET TROJAN Win32/Recslurp.D C2 Request (no alert);  
17,1812015/01/20 2020153  ET TROJAN Unknown Downloader Sending UUID and Processes x64;  
17,1802015/01/20 2020152  ET TROJAN Unknown Downloader Sending UUID and Processes x86;  
17,1792015/01/20 2020151  ET TROJAN Unknown Downloader Checkin x64;  
17,1782015/01/20 2020150  ET TROJAN Unknown Downloader Checkin x86;  
17,1772015/01/20 2020149  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC); [1
17,1762015/01/20 2020148  ET CURRENT_EVENTS MS Office Macro Dridex Download URI Jan 7 2015; [1
17,1752015/01/20 2020147  ET POLICY DNS Query to .onion proxy Domain (walterwtor.com);  
17,1742015/01/20 2020146  ET POLICY DNS Query to .onion proxy Domain (vtorchike.com);  
17,1732015/01/20 2020145  ET POLICY DNS Query to .onion proxy Domain (totortoweb.com);  
17,1722015/01/20 2020144  ET POLICY DNS Query to .onion proxy Domain (torwinner.com);  
17,1712015/01/20 2020143  ET POLICY DNS Query to .onion proxy Domain (torwild.com);  
17,1702015/01/20 2020142  ET POLICY DNS Query to .onion proxy Domain (torvsusd.com);  
17,1692015/01/20 2020141  ET POLICY DNS Query to .onion proxy Domain (torsona.com);  
17,1682015/01/20 2020140  ET POLICY DNS Query to .onion proxy Domain (torsanctions.com);  
17,1672015/01/20 2020139  ET POLICY DNS Query to .onion proxy Domain (torprivatebrowsing.org);  
17,1662015/01/20 2020138  ET POLICY DNS Query to .onion proxy Domain (torpayusd.com);  
17,1652015/01/20 2020137  ET POLICY DNS Query to .onion proxy Domain (torpayeur.com);  
17,1642015/01/20 2020136  ET POLICY DNS Query to .onion proxy Domain (torpaycnf.com);  
17,1632015/01/20 2020135  ET POLICY DNS Query to .onion proxy Domain (torpaycash.com);  
17,1622015/01/20 2020134  ET POLICY DNS Query to .onion proxy Domain (torpacho.com);  
< 191  192  193  194  195  196  197  198  199  200 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.