시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,9112015/10/07 2021914  ET TROJAN ELF/muBoT IRC Activity 3; [1
21,9102015/10/07 2021910  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9092015/10/07 2021912  ET TROJAN ELF/muBoT IRC Activity 1; [1
21,9082015/10/07 2021908  ET CURRENT_EVENTS KaiXin Landing Page Oct 05 2015;  
21,9072015/10/07 2021909  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9062015/10/07 2021907  ET CURRENT_EVENTS KaiXin Landing M5 3 Oct 05 2015;  
21,9052015/10/07 2021911  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9042015/10/07 2021905  ET CURRENT_EVENTS KaiXin Landing M5 1 Oct 05 2015;  
21,9032015/10/07 2021903  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC); [1
21,9022015/10/07 2021902  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9012015/10/07 2021906  ET CURRENT_EVENTS KaiXin Landing M5 2 Oct 05 2015;  
21,9002015/10/07 2021900  ET MOBILE_MALWARE YiSpecter Activity M1; [1
21,8992015/10/07 2021904  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,8982015/10/07 2021901  ET MOBILE_MALWARE YiSpecter Activity M2; [1
21,8972015/10/06 2021897  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,8962015/10/06 2021898  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,8952015/10/06 2021899  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,8942015/10/06 2021895  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC); [1
21,8932015/10/06 2021896  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,8922015/10/06 2021893  ET CURRENT_EVENTS Potential Data URI Phishing; [1
21,8912015/10/06 2021894  ET TROJAN Winlock/Torrentlocker SSL Cert; [1
21,8902015/10/02 2021864  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,8892015/10/02 2021865  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,8882015/10/02 2021866  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,8872015/10/02 2021868  ET TROJAN Winlock/Torrentlocker SSL Cert; [1
21,8862015/10/02 2021867  ET TROJAN Winlock/Torrentlocker SSL Cert; [1
21,8852015/10/02 2021871  ET TROJAN Hawkeye Keylogger SMTP Beacon;  
21,8842015/10/02 2021870  ET CURRENT_EVENTS Evil Redirector Leading To EK Sep 30 2015;  
21,8832015/10/02 2021869  ET TROJAN Winlock/Torrentlocker SSL Cert; [1
21,8822015/10/02 2021863  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,8812015/10/02 2021858  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 7; [1
21,8802015/10/02 2021862  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 11; [1
21,8792015/10/02 2021857  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 6; [1
21,8782015/10/02 2021861  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 10; [1
21,8772015/10/02 2021859  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 8; [1
21,8762015/10/02 2021860  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 9; [1
21,8752015/10/02 2021856  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 5; [1
21,8742015/10/02 2021855  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 4; [1
21,8732015/10/02 2021853  ET TROJAN Ransomware Win32/WinPlock.A Successfully Installed CnC Beacon;  
21,8722015/10/02 2021854  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 3;  
21,8712015/10/02 2021852  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 2;  
21,8702015/10/02 2021851  ET TROJAN Ransomware Win32/WinPlock.A CnC Beacon 1; [1
21,8692015/10/02 2021849  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain;  
21,8682015/10/02 2021850  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain;  
21,8672015/10/01 2101984  GPL DELETED DeepThroat 3.1 Server Response 4120;  
21,8662015/10/01 2101980  GPL DELETED DeepThroat 3.1 Connection attempt;  
21,8652015/10/01 2101983  GPL DELETED DeepThroat 3.1 Connection attempt 4120;  
21,8642015/10/01 2101947  GPL DELETED answerbook2 arbitrary command execution attempt;  
21,8632015/10/01 2102418  GPL DELETED MS Remote Desktop non-encrypted session initiation attempt; [1
21,8622015/10/01 2101953  GPL DELETED AMD TCP pid request;  
< 101  102  103  104  105  106  107  108  109  110 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.