시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,5612015/08/08 2021600  ET POLICY External IP Lookup - www.ip.cn;  
21,5602015/08/07 2021597  ET TROJAN W32/Alina.POS-Trojan Checkin; [1
21,5592015/08/07 2021598  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5582015/08/07 2021599  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5572015/08/05 2021595  ET CURRENT_EVENTS HT SWF Exploit RIP;  
21,5562015/08/05 2021594  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5552015/08/05 2021590  ET CURRENT_EVENTS Job314/Neutrino Flash Exploit M1 Aug 02 2015 (IE);  
21,5542015/08/05 2021588  ET CURRENT_EVENTS Job314/Neutrino Flash Exploit M2 Aug 02 2015;  
21,5532015/08/05 2021596  ET TROJAN Likely Dridex SSL Cert;  
21,5522015/08/05 2021593  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5512015/08/05 2021591  ET TROJAN APT CozyCar SSL Cert 1; [1
21,5502015/08/05 2021589  ET CURRENT_EVENTS Job314/Neutrino Flash Exploit M3 Aug 02 2015;  
21,5492015/08/05 2021587  ET CURRENT_EVENTS Job314/Neutrino Reboot EK Landing Aug 02 2015;  
21,5482015/08/05 2021586  ET CURRENT_EVENTS Possible Dyre SSL Cert (non-ASCII) Jul 21 2015;  
21,5472015/08/05 2021592  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5462015/08/04 2021585  ET TROJAN APT Lurker GET CnC Beacon; [1
21,5452015/08/04 2021584  ET TROJAN APT Lurker POST CnC Beacon; [1
21,5442015/08/04 2021580  ET TROJAN APT SuperhardCorp DNS Lookup (np3.Jkub.com); [1
21,5432015/08/04 2021581  ET TROJAN APT SuperhardCorp DNS Lookup (ns8.ddns1.com); [1
21,5422015/08/04 2021582  ET TROJAN APT SuperhardCorp DNS Lookup (books.mrface.com); [1
21,5412015/08/04 2021576  ET TROJAN APT SuperhardCorp DNS Lookup (drometic.suroot.com); [1
21,5402015/08/04 2021578  ET TROJAN APT SuperhardCorp DNS Lookup (ohio.sysbloger.com); [1
21,5392015/08/04 2021579  ET TROJAN APT SuperhardCorp DNS Lookup (specs.dnsrd.com); [1
21,5382015/08/04 2021583  ET TROJAN APT SuperhardCorp DNS Lookup (kieti.ipsecsl.net); [1
21,5372015/08/04 2021577  ET TROJAN APT SuperhardCorp DNS Lookup (docume.sysbloger.com); [1
21,5362015/08/02 2021573  ET EXPLOIT Possible BIND9 DoS CVE-2015-5477 M2;  
21,5352015/08/02 2021574  ET EXPLOIT Possible BIND9 DoS CVE-2015-5477 M3;  
21,5342015/08/02 2021572  ET EXPLOIT Possible BIND9 DoS CVE-2015-5477 M1;  
21,5332015/08/02 2021575  ET EXPLOIT Possible BIND9 DoS CVE-2015-5477 M4;  
21,5322015/08/02 2021566  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5312015/08/02 2021567  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,5302015/08/02 2021569  ET TROJAN Sakula/Mivast RAT CnC Beacon 6; [1
21,5292015/08/02 2021570  ET TROJAN Sakula/Mivast RAT CnC Beacon 7; [1
21,5282015/08/02 2021571  ET TROJAN Sakula/Mivast RAT CnC Beacon 8; [1
21,5272015/08/02 2021568  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ransomware CnC); [1
21,5262015/08/02 2021563  ET TROJAN Likely Dridex SSL Cert;  
21,5252015/08/02 2021564  ET MALWARE W32/DownloadAdmin.Adware User-Agent;  
21,5242015/08/02 2021565  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM); [1
21,5232015/08/01 2021561  ET TROJAN EncryptorRaas .onion Proxy Domain (613cb6owitcouepv);  
21,5222015/08/01 2021559  ET CURRENT_EVENTS Evil Redirector Leading to EK Jul 29;  
21,5212015/08/01 2021553  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (VMZeuS MITM); [1
21,5202015/08/01 2021554  ET TROJAN Potao CnC;  
21,5192015/08/01 2021556  ET TROJAN Dyre CnC Checkin;  
21,5182015/08/01 2021562  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (VMZeuS MITM); [1
21,5172015/08/01 2021558  ET TROJAN Possible Java/Downloader Observed in Pawn Storm CVE-2015-2590 2; [1
21,5162015/08/01 2021560  ET TROJAN URI Struct Observed in Pawn Storm CVE-2015-2950; [1
21,5152015/08/01 2021555  ET TROJAN Potao CnC POST Response;  
21,5142015/08/01 2021557  ET TROJAN Possible Java/Downloader Observed in Pawn Storm CVE-2015-2590 1; [1
21,5132015/07/31 2021552  ET CURRENT_EVENTS Possible Malicious Redirect 8x8 script tag URI struct;  
21,5122015/07/30 2021549  ET TROJAN CryptoLocker .onion Proxy Domain (vacdgwaw5djp5hmu);  
< 111  112  113  114  115  116  117  118  119  120 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.