시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
16,6612015/01/20 2019622  ET MALWARE Win32/DealPly Checkin;  
16,6602015/01/20 2019621  ET TROJAN Win32/Hikit Server Authentication Response; [1
16,6592015/01/20 2019620  ET POLICY Office Document Containing AutoExec Macro Via smtp; [1
16,6582015/01/20 2019619  ET POLICY Office Document Containing AutoExec Macro Via smtp; [1
16,6572015/01/20 2019618  ET POLICY Office Document Containing AutoExec Macro Via smtp; [1
16,6562015/01/20 2019617  ET POLICY Office Document Containing AutoOpen Macro Via smtp; [1
16,6552015/01/20 2019616  ET POLICY Office Document Containing AutoOpen Macro Via smtp; [1
16,6542015/01/20 2019615  ET POLICY Office Document Containing AutoOpen Macro Via smtp; [1
16,6532015/01/20 2019614  ET POLICY Office Document Download Containing AutoExec Macro; [1
16,6522015/01/20 2019613  ET POLICY Office Document Download Containing AutoOpen Macro; [1
16,6512015/01/20 2019612  ET CURRENT_EVENTS Fiesta Flash Exploit URI Struct;  
16,6502015/01/20 2019611  ET CURRENT_EVENTS Fiesta Java Exploit/Payload URI Struct;  
16,6492015/01/20 2019610  ET TROJAN Possible EITest Flash Redirect; [1
16,6482015/01/20 2019609  ET TROJAN Possible Tinba DGA NXDOMAIN Responses (2); [1
16,6472015/01/20 2019608  ET TROJAN HB_Banker16 Get;  
16,6462015/01/20 2019607  ET TROJAN CryptoBot Downloading Files; [1
16,6452015/01/20 2019606  ET TROJAN Poweliks Abnormal HTTP Headers, high likelihood of Poweliks infection;  
16,6442015/01/20 2019605  ET CURRENT_EVENTS Win32/Trustezeb.J SSL Cert Oct 30 2014;  
16,6432015/01/20 2019604  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2); [1
16,6422015/01/20 2019603  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2); [1
16,6412015/01/20 2019602  ET TROJAN Backdoor family PCRat/Gh0st CnC traffic (OUTBOUND) 43; [1,2
16,6402015/01/20 2019601  ET TROJAN Backdoor.Win32.PcClient.bal CnC (OUTBOUND) 4;  
16,6392015/01/20 2019600  ET CURRENT_EVENTS Likely SweetOrange EK Java Exploit Struct (JNLP);  
16,6382015/01/20 2019599  ET CURRENT_EVENTS DRIVEBY FakeSupport - Landing Page - Operating System Check;  
16,6372015/01/20 2019598  ET CURRENT_EVENTS DRIVEBY FakeSupport - URI - windows-firewall.png;  
16,6362015/01/20 2019597  ET CURRENT_EVENTS DRIVEBY FakeSupport - Landing Page - Windows Firewall Warning;  
16,6352015/01/20 2019596  ET CURRENT_EVENTS FlashPack Secondary Landing Oct 29;  
16,6342015/01/20 2019595  ET CURRENT_EVENTS FlashPack Payload Download Oct 29;  
16,6332015/01/20 2019594  ET CURRENT_EVENTS FlashPack EK Plugin-Detect Post;  
16,6322015/01/20 2019593  ET TROJAN PoisonIvy Keepalive to CnC (Operation SMN Variant);  
16,6312015/01/20 2019592  ET TROJAN PoisonIvy Keepalive to CnC (Operation SMN Variant);  
16,6302015/01/20 2019591  ET DELETED PoisonIvy Keepalive to CnC (Operation SMN Variant);  
16,6292015/01/20 2019590  ET TROJAN PoisonIvy Keepalive to CnC (Operation SMN Variant);  
16,6282015/01/20 2019589  ET TROJAN PoisonIvy Keepalive to CnC (Operation SMN Variant);  
16,6272015/01/20 2019588  ET TROJAN W32/ZxShell Checkin; [1
16,6262015/01/20 2019587  ET TROJAN W32/ZxShell Server Checkin Response; [1
16,6252015/01/20 2019586  ET TROJAN Sofacy DNS Lookup msonlinelive.com; [1
16,6242015/01/20 2019585  ET TROJAN Sofacy HTTP Request msonlinelive.com; [1
16,6232015/01/20 2019584  ET TROJAN CORESHELL Malware Response from server; [1
16,6222015/01/20 2019583  ET TROJAN Sofacy HTTP Request symanttec.org; [1
16,6212015/01/20 2019582  ET TROJAN Sofacy DNS Lookup checkmalware.org; [1
16,6202015/01/20 2019581  ET TROJAN Sofacy DNS Lookup windows-updater.com; [1
16,6192015/01/20 2019580  ET TROJAN Sofacy DNS Lookup updatesoftware24.com; [1
16,6182015/01/20 2019579  ET TROJAN Sofacy DNS Lookup updatepc.org; [1
16,6172015/01/20 2019578  ET TROJAN Sofacy DNS Lookup testsnetcontrol.com; [1
16,6162015/01/20 2019577  ET TROJAN Sofacy DNS Lookup testservice24.net; [1
16,6152015/01/20 2019576  ET TROJAN Sofacy DNS Lookup symanttec.org; [1
16,6142015/01/20 2019575  ET TROJAN Sofacy DNS Lookup securitypractic.com; [1
16,6132015/01/20 2019574  ET TROJAN Sofacy DNS Lookup secnetcontrol.com; [1
16,6122015/01/20 2019573  ET TROJAN Sofacy DNS Lookup scanmalware.info; [1
< 201  202  203  204  205  206  207  208  209  210 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.