시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
22,1112015/11/18 2022098  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit); [1
22,1102015/11/18 2022100  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Downloader CnC); [1
22,1092015/11/18 2022097  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC); [1
22,1082015/11/18 2022096  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC); [1
22,1072015/11/18 2022099  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC); [1
22,1062015/11/18 2022092  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Nov 16;  
22,1052015/11/18 2022093  ET CURRENT_EVENTS Jimdo Outlook Web App Phishing Landing Nov 16;  
22,1042015/11/18 2022094  ET CURRENT_EVENTS Successful Jimdo Outlook Web App Phishing Nov 16;  
22,1032015/11/18 2022095  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC); [1
22,1022015/11/15 2022091  ET TROJAN Trojan-Ransom.Win32.Blocker.dham Checkin;  
22,1012015/11/15 2022090  ET CURRENT_EVENTS Possible Nuclear EK Nov 13 2015 Landing URI struct;  
22,1002015/11/15 2022089  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC); [1
22,0992015/11/15 2022088  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC); [1
22,0982015/11/15 2022087  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC); [1
22,0972015/11/15 2022085  ET CURRENT_EVENTS Successful Revalidation Phish Nov 13 M2;  
22,0962015/11/15 2022082  ET POLICY External IP Lookup ip-api.com;  
22,0952015/11/15 2022084  ET CURRENT_EVENTS Successful Revalidation Phish Nov 13 M1;  
22,0942015/11/15 2022083  ET CURRENT_EVENTS Mailbox Renewal Phish Landing Nov 13;  
22,0932015/11/15 2022086  ET CURRENT_EVENTS Revalidation Phish Landing Nov 13;  
22,0922015/11/13 2022078  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,0912015/11/13 2022080  ET INFO form-data flowbit set (noalert);  
22,0902015/11/13 2022081  ET MOBILE_MALWARE Android Trojan Cloudsota HTTP Host; [1
22,0892015/11/13 2022079  ET CURRENT_EVENTS Fake AV Phone Scam Landing Nov 11;  
22,0882015/11/13 2022077  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu); [1
22,0872015/11/13 2022076  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu); [1
22,0862015/11/13 2022075  ET TROJAN Possible Chimera Ransomware - Bitmessage Activity; [1
22,0852015/11/13 2022074  ET TROJAN Bookworm CnC Beacon 2; [1
22,0842015/11/13 2022072  ET TROJAN TinyLoader.B2 Checkin x64;  
22,0832015/11/13 2022073  ET TROJAN Bookworm CnC Beacon; [1
22,0822015/11/12 2022067  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ProxyChanger); [1,2
22,0812015/11/12 2022057  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ProxyChanger); [1
22,0802015/11/12 2022058  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL Certificate Detected (Shifu); [1
22,0792015/11/12 2022068  ET TROJAN KilerRAT CnC - Remote Shell; [1
22,0782015/11/12 2022061  ET TROJAN njrat ver 0.7d Malware CnC Callback Response (Remote Desktop);  
22,0772015/11/12 2022056  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu);  
22,0762015/11/12 2022062  ET TROJAN njrat ver 0.7d Malware CnC Callback Response (File Manager);  
22,0752015/11/12 2022066  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ProxyChanger); [1,2
22,0742015/11/12 2022060  ET TROJAN njrat ver 0.7d Malware CnC Callback (Remote Desktop);  
22,0732015/11/12 2022069  ET TROJAN KilerRAT CnC - Info Checkin; [1
22,0722015/11/12 2022064  ET TROJAN Win32/HideWindows.C IRC Checkin; [1
22,0712015/11/12 2022059  ET TROJAN njrat ver 0.7d Malware CnC Callback Response (Get Passwords);  
22,0702015/11/12 2022055  ET INFO PK/Compressed doc/JAR header;  
22,0692015/11/12 2022065  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu); [1
22,0682015/11/12 2022070  ET CURRENT_EVENTS Possible Evil Redirector Leading to EK Nov 09 2015 M1;  
22,0672015/11/12 2022071  ET CURRENT_EVENTS Possible Evil Redirector Leading to EK Nov 09 2015 M2;  
22,0662015/11/12 2022063  ET TROJAN njrat ver 0.7d Malware CnC Callback (Get Passwords);  
22,0652015/11/11 2022052  ET CURRENT_EVENTS Likely Evil EXE download from MSXMLHTTP non-exe extension M1;  
22,0642015/11/11 2022047  ET TROJAN Wrapper/Gholee/Wedex Checkin; [1
22,0632015/11/11 2022053  ET CURRENT_EVENTS Likely Evil EXE download from MSXMLHTTP non-exe extension M2;  
22,0622015/11/11 2022054  ET INFO Possible MSXMLHTTP Request to Dotted Quad;  
< 101  102  103  104  105  106  107  108  109  110 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.