시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
20,9612015/04/24 2020968  ET TROJAN CozyDuke APT Possible SSL Cert 3; [1
20,9602015/04/24 2020967  ET TROJAN CozyDuke APT Possible SSL Cert 2; [1
20,9592015/04/24 2020963  ET TROJAN CozyDuke APT HTTP GET CnC Beacon; [1
20,9582015/04/24 2020962  ET TROJAN CozyDuke APT HTTP Checkin; [1
20,9572015/04/24 2020966  ET TROJAN CozyDuke APT Possible SSL Cert 1; [1
20,9562015/04/24 2020961  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC); [1
20,9552015/04/24 2020960  ET TROJAN Possible Graftor Downloading Dridex;  
20,9542015/04/24 2020964  ET TROJAN CozyDuke APT HTTP POST CnC Beacon; [1
20,9532015/04/23 2020959  ET TROJAN CryptoWall .onion Proxy Domain (7oqnsnzwwnm6zb7y);  
20,9522015/04/23 2020958  ET TROJAN CryptoLocker .onion Proxy Domain (zoqowm4kzz4cvvvl);  
20,9512015/04/23 2020955  ET TROJAN Windows nbtstat -n Microsoft Windows DOS prompt command exit OUTBOUND;  
20,9502015/04/22 2020957  ET TROJAN Windows nbtstat -s Microsoft Windows DOS prompt command exit OUTBOUND;  
20,9492015/04/22 2020956  ET TROJAN Windows nbtstat -r Microsoft Windows DOS prompt command exit OUTBOUND;  
20,9482015/04/22 2020953  ET TROJAN CryptoLocker .onion Proxy Domain (v7lfogalalzc2c4d);  
20,9472015/04/22 2020954  ET TROJAN Windows nbtstat -a Microsoft Windows DOS prompt command exit OUTBOUND;  
20,9462015/04/22 2020950  ET CURRENT_EVENTS Unknown EK Landing Apr 20 2015;  
20,9452015/04/22 2020952  ET TROJAN CryptoLocker .onion Proxy Domain (pf3tlgkpks7pu7yr);  
20,9442015/04/22 2020948  ET MALWARE W32/PicColor Adware CnC Beacon;  
20,9432015/04/22 2020949  ET TROJAN Neutrino Bot Fake 404 Checkin Response; [1
20,9422015/04/22 2020951  ET CURRENT_EVENTS Unknown EK Flash Exploit Apr 20 2015;  
20,9412015/04/19 2020947  ET TROJAN Win32/StreamFlaw.A Checkin;  
20,9402015/04/19 2020945  ET TROJAN Win32/Tesch.B CnC Beacon;  
20,9392015/04/19 2020946  ET DELETED Win32/Spy.Zbot.YW CnC Beacon 2;  
20,9382015/04/19 2020944  ET TROJAN Win32/Spy.Zbot.YW CnC Beacon;  
20,9372015/04/19 2020943  ET CURRENT_EVENTS Possible Dridex downloader SSL Certificate;  
20,9362015/04/18 2020942  ET TROJAN Win32/Filecoder Ransomware Variant .onion Proxy Domain (tkj3higtqlvohs7z);  
20,9352015/04/18 2020941  ET CURRENT_EVENTS Potential Dridex.Maldoc Minimal Executable Request;  
20,9342015/04/18 2020940  ET TROJAN PunkeyPOS HTTP CnC Beacon 6; [1
20,9332015/04/18 2020939  ET TROJAN PunkeyPOS HTTP CnC Beacon 5; [1
20,9322015/04/18 2020936  ET TROJAN PunkeyPOS HTTP CnC Beacon 2; [1
20,9312015/04/18 2020937  ET TROJAN PunkeyPOS HTTP CnC Beacon 3; [1
20,9302015/04/18 2020938  ET TROJAN PunkeyPOS HTTP CnC Beacon 4; [1
20,9292015/04/18 2020932  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC); [1
20,9282015/04/18 2020930  ET TROJAN Possible Dalexis downloader encrypted binary (2);  
20,9272015/04/18 2020935  ET TROJAN PunkeyPOS HTTP CnC Beacon 1; [1
20,9262015/04/18 2020931  ET TROJAN Possible Dalexis downloader encrypted binary (3);  
20,9252015/04/18 2020933  ET TROJAN Dalexis CnC Beacon;  
20,9242015/04/18 2020934  ET TROJAN PunkeyPOS HTTP CnC Beacon Fake UA; [1
20,9232015/04/18 2020929  ET TROJAN Possible Dalexis downloader encrypted binary (1);  
20,9222015/04/17 2020927  ET TROJAN Bioazih RAT Checkin; [1
20,9212015/04/17 2020928  ET TROJAN Zacom/NFlog Checkin; [1
20,9202015/04/17 2020926  ET TROJAN FormerFirstRAT HTTP POST CnC Beacon; [1
20,9192015/04/17 2020925  ET TROJAN Zacom/NFlog HTTP POST Fake UA CnC Beacon; [1
20,9182015/04/17 2020921  ET TROJAN Sysget/HelloBridge HTTP GET CnC Beacon; [1
20,9172015/04/17 2020922  ET TROJAN Sysget/HelloBridge HTTP POST CnC Beacon; [1
20,9162015/04/17 2020923  ET TROJAN Unit42 PoisonIvy Keepalive to CnC; [1
20,9152015/04/17 2020924  ET TROJAN Zacom/NFlog HTTP POST Connectivity Check; [1
20,9142015/04/17 2020920  ET TROJAN FighterPOS CnC Beacon 3; [1
20,9132015/04/17 2020919  ET TROJAN FighterPOS CnC Beacon 2; [1
20,9122015/04/17 2020918  ET TROJAN FighterPOS CnC Beacon 1; [1
< 121  122  123  124  125  126  127  128  129  130 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.