시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,3612015/07/01 2021370  ET TROJAN Dridex SSL Cert 30 June 2015;  
21,3602015/06/30 2021369  ET CURRENT_EVENTS Possible Upatre or Dyre SSL Cert June 29 2015;  
21,3592015/06/30 2021364  ET CURRENT_EVENTS Magnitude CVE-2015-3113 Jun 29 2015 M1;  
21,3582015/06/30 2021366  ET CURRENT_EVENTS Fake AV Phone Scam Stylesheet June 26 2015;  
21,3572015/06/30 2021367  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 26 2015 M5;  
21,3562015/06/30 2021360  ET CURRENT_EVENTS Angler EK XTEA encrypted binary (26);  
21,3552015/06/30 2021361  ET CURRENT_EVENTS Angler EK XTEA encrypted binary (27);  
21,3542015/06/30 2021365  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 26 2015 M4;  
21,3532015/06/30 2021368  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 26 2015 M6;  
21,3522015/06/30 2021363  ET TROJAN CryptoWall .onion Proxy Domain (djdkduep62kz4nzx); [1
21,3512015/06/27 2021359  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 26 2015 M3;  
21,3502015/06/27 2021357  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 26 2015 M1;  
21,3492015/06/27 2021358  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 26 2015 M2;  
21,3482015/06/27 2021352  ET TROJAN ELF.DES.Downloader Request; [1
21,3472015/06/27 2021353  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC); [1
21,3462015/06/27 2021354  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,3452015/06/27 2021355  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3442015/06/27 2021351  ET CURRENT_EVENTS Possible Elasticsearch CVE-2015-1427 Exploit Campaign SSL Certificate; [1
21,3432015/06/26 2021348  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3422015/06/26 2021350  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC); [1
21,3412015/06/26 2021349  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3402015/06/26 2021347  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3392015/06/26 2021346  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3382015/06/26 2021342  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3372015/06/26 2021339  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3362015/06/26 2021340  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3352015/06/26 2021338  ET CURRENT_EVENTS Possible Evil Redirector Leading to EK June 10 2015;  
21,3342015/06/26 2021344  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3332015/06/26 2021345  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3322015/06/26 2021341  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3312015/06/26 2021343  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,3302015/06/26 2021337  ET TROJAN Win32/Vflooder.C Connectivity Check;  
21,3292015/06/25 2021334  ET TROJAN DDoS.XOR Checkin 2; [1
21,3282015/06/25 2021336  ET TROJAN DDoS.XOR Checkin via HTTP;  
21,3272015/06/25 2021330  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (ns4.hostasa.org);  
21,3262015/06/25 2021331  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (gh.dsaj2a1.org);  
21,3252015/06/25 2021332  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (navert0p.com);  
21,3242015/06/25 2021335  ET TROJAN DDoS.XOR Checkin 3; [1
21,3232015/06/25 2021328  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (ns2.hostasa.org);  
21,3222015/06/25 2021329  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (ns3.hostasa.org);  
21,3212015/06/25 2021326  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (aa.hostasa.org);  
21,3202015/06/25 2021333  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (wangzongfacai.com);  
21,3192015/06/25 2021327  ET CURRENT_EVENTS Likely Linux/Xorddos.F DDoS Attack Participation (ns1.hostasa.org);  
21,3182015/06/25 2021325  ET TROJAN CryptoLocker .onion Proxy Domain (xvha2ctkacx2ug3b); [1
21,3172015/06/24 2021324  ET CURRENT_EVENTS Possible PHISH Remax - Other Creds;  
21,3162015/06/24 2021320  ET CURRENT_EVENTS KaiXin Secondary Landing Page June 22 2015;  
21,3152015/06/24 2021315  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Possible Sinkhole); [1
21,3142015/06/24 2021321  ET TROJAN Gozi/Ursnif/Papras Grabftp Module Download;  
21,3132015/06/24 2021323  ET CURRENT_EVENTS Possible PHISH Remax - Yahoo Creds;  
21,3122015/06/24 2021319  ET TROJAN AlphaCrypt .onion proxy Domain (tkjthigtqlvohs7z);  
< 111  112  113  114  115  116  117  118  119  120 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.