시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
22,2612015/12/16 2022262  ET INFO possible .jpg download by VBA macro;  
22,2602015/12/16 2022259  ET TROJAN Possible Gootkit CnC SSL Cert M7;  
22,2592015/12/16 2022261  ET EXPLOIT Joomla RCE (JDatabaseDriverMysqli); [1
22,2582015/12/16 2022258  ET TROJAN Possible Gootkit CnC SSL Cert M6;  
22,2572015/12/16 2022260  ET WEB_SERVER Possible Darkleech C2; [1
22,2562015/12/16 2022257  ET TROJAN Possible Gootkit CnC SSL Cert M5;  
22,2552015/12/16 2022255  ET TROJAN Possible Gootkit CnC SSL Cert M3;  
22,2542015/12/16 2022256  ET TROJAN Possible Gootkit CnC SSL Cert M4;  
22,2532015/12/16 2022254  ET TROJAN Possible Gootkit CnC SSL Cert M2;  
22,2522015/12/16 2022251  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,2512015/12/16 2022250  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,2502015/12/16 2022249  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,2492015/12/16 2022248  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
22,2482015/12/16 2022253  ET TROJAN Possible Gootkit CnC SSL Cert M1;  
22,2472015/12/16 2022252  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
22,2462015/12/16 2022247  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,2452015/12/13 2022243  ET SCAN COMMIX Command injection scan attempt; [1
22,2442015/12/13 2022246  ET TROJAN Backdoor User-Agent (InstallCapital);  
22,2432015/12/13 2022245  ET TROJAN NetBackdoor User-Agent (.net backdor);  
22,2422015/12/13 2022244  ET TROJAN NetBackdoor Checkin;  
22,2412015/12/12 2022242  ET CURRENT_EVENTS Evil Redirector Leading to EK Dec 09;  
22,2402015/12/10 2022237  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Domain;  
22,2392015/12/10 2022236  ET TROJAN EncryptorRaas .onion Domain (75nzutdjjtnpgscz);  
22,2382015/12/10 2022239  ET TROJAN EXE Download Request To Wordpress Folder Likely Malicious;  
22,2372015/12/10 2022240  ET SCAN Possible Scanning for Vulnerable JBoss; [1
22,2362015/12/10 2022238  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Domain;  
22,2352015/12/09 2022233  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Zeus CnC); [1
22,2342015/12/09 2022235  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,2332015/12/09 2022231  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,2322015/12/09 2022234  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,2312015/12/09 2022232  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC); [1
22,2302015/12/09 2022229  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit MITM); [1
22,2292015/12/09 2022230  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit MITM); [1
22,2282015/12/09 2022228  ET TROJAN Malicious SSL certificate detected (FindPOS); [1
22,2272015/12/09 2022227  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC); [1
22,2262015/12/09 2022223  ET TROJAN Linux/MayhemBruter Checkin; [1
22,2252015/12/09 2022225  ET TROJAN Vawtrak HTTP CnC Beacon;  
22,2242015/12/09 2022226  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
22,2232015/12/09 2022222  ET POLICY External IP Lookup ip2nation.com;  
22,2222015/12/09 2022224  ET TROJAN Linux/MayhemBruter Inbound Ping From CnC; [1
22,2212015/12/06 2022221  ET CURRENT_EVENTS Facebook password stealing inject Jan 04;  
22,2202015/12/06 2022219  ET TROJAN Linux/KDefend Checkin; [1
22,2192015/12/06 2022220  ET INFO possible .jpg download by VBA macro;  
22,2182015/12/05 2022216  ET TROJAN ELF/STDbot CnC Activity (UNK attack); [1
22,2172015/12/05 2022214  ET TROJAN ELF/lizkebab CnC Activity (Server Banner); [1
22,2162015/12/05 2022215  ET TROJAN ELF/STDbot CnC Activity (STD attack); [1
22,2152015/12/05 2022218  ET POLICY Lets Encrypt Free SSL Cert Observed; [1
22,2142015/12/05 2022217  ET CURRENT_EVENTS Successful Google Drive Phish Sept 1 M1;  
22,2132015/12/05 2022213  ET TROJAN ELF/lizkebab CnC Activity (Flooding 1); [1
22,2122015/12/03 2022211  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Bancos CnC); [1
< 91  92  93  94  95  96  97  98  99  100 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.