시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
22,6612016/03/25 2022645  ET POLICY DNS Query to .onion proxy Domain (tormaster.fr);  
22,6602016/03/25 2022646  ET POLICY DNS Query to .onion proxy Domain (torgateway.li);  
22,6592016/03/25 2022643  ET POLICY DNS Query to a *.neokred domain - Likely Hostile;  
22,6582016/03/25 2022641  ET POLICY DNS Query to a *.ngrok domain (ngrok.com);  
22,6572016/03/25 2022639  ET TROJAN Possible Locky Ransomware Writing Encrypted File over - SMB and SMB-DS v2;  
22,6562016/03/25 2022638  ET TROJAN Possible Locky Ransomware Writing Encrypted File over - SMB and SMB-DS v1 ASCII;  
22,6552016/03/25 2022644  ET POLICY DNS Query to .onion proxy Domain (torgate.es);  
22,6542016/03/25 2022640  ET TROJAN PE EXE or DLL Windows file download Text M2;  
22,6532016/03/25 2022637  ET TROJAN Possible Locky Ransomware Writing Encrypted File over - SMB and SMB-DS v1 Unicode;  
22,6522016/03/25 2022642  ET POLICY DNS Query to a *.ngrok domain (ngrok.io);  
22,6512016/03/23 2022636  ET INFO SUSPICIOUS Single JS file inside of ZIP Download (Observed as lure in malspam campaigns);  
22,6502016/03/23 2022635  ET CURRENT_EVENTS Evil Redirector Leading To EK Mar 22 2016;  
22,6492016/03/22 2022633  ET CURRENT_EVENTS Possible Fake AV Phone Scam Long Domain Mar 21 M3;  
22,6482016/03/22 2022631  ET CURRENT_EVENTS Possible Fake AV Phone Scam Long Domain Mar 21 M1;  
22,6472016/03/22 2022634  ET TROJAN Maktub Locker Payment Domain;  
22,6462016/03/22 2022632  ET CURRENT_EVENTS Possible Fake AV Phone Scam Long Domain Mar 21 M2;  
22,6452016/03/20 2022630  ET CURRENT_EVENTS Evil Redirector Leading to EK Mar 19 2016 M2;  
22,6442016/03/20 2022629  ET CURRENT_EVENTS Evil Redirector Leading to EK Mar 19 2016 M1;  
22,6432016/03/20 2022628  ET CURRENT_EVENTS Evil Redirect Leading to EK Mar 18 2016;  
22,6422016/03/18 2022627  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
22,6412016/03/17 2022626  ET TROJAN Suckfly/Nidiran Backdoor DNS Lookup; [1
22,6402016/03/17 2022621  ET CURRENT_EVENTS Evil Redirector Leading to EK Mar 15 2016 M2;  
22,6392016/03/17 2022622  ET CURRENT_EVENTS Likely Evil Macro EXE DL mar 15 2016;  
22,6382016/03/17 2022624  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Kasidet CnC); [1
22,6372016/03/17 2022625  ET CURRENT_EVENTS Possible Fake AV Phone Scam Long Domain Mar 15;  
22,6362016/03/17 2022619  ET CURRENT_EVENTS Fake AV Phone Scam Landing Mar 15;  
22,6352016/03/17 2022620  ET CURRENT_EVENTS Evil Redirector Leading to EK Mar 15 2016 M1;  
22,6342016/03/17 2022623  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC); [1
22,6332016/03/16 2022618  ET CURRENT_EVENTS Possible Paypal Phishing Domain Mar 14;  
22,6322016/03/16 2400031  ET DROP Spamhaus DROP Listed Traffic Inbound group 32; [1
22,6312016/03/16 2022617  ET CURRENT_EVENTS Possible USAA Phishing Domain Mar 14;  
22,6302016/03/16 2022615  ET CURRENT_EVENTS Possible Chase Phishing Domain Mar 14;  
22,6292016/03/16 2022616  ET CURRENT_EVENTS Possible Apple Phishing Domain Mar 14;  
22,6282016/03/16 2022614  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Payment Domain(k7tlx3ghr3m4n2tu);  
22,6272016/03/13 2022613  ET TROJAN Malicious SSL certificate detected (Ursnif Injects);  
22,6262016/03/12 2022610  ET TROJAN Scarlet Mimic DNS Lookup 45; [1
22,6252016/03/12 2022612  ET TROJAN Scarlet Mimic DNS Lookup 47; [1
22,6242016/03/12 2022611  ET TROJAN Scarlet Mimic DNS Lookup 46; [1
22,6232016/03/12 2022609  ET TROJAN Panda Banker CnC;  
22,6222016/03/11 2022606  ET CURRENT_EVENTS Generic Fake Support Phone Scam Mar 9 M2;  
22,6212016/03/11 2022607  ET CURRENT_EVENTS Generic Fake Support Phone Scam Mar 9 M3;  
22,6202016/03/11 2022608  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Mar 9 M2;  
22,6192016/03/11 2022605  ET CURRENT_EVENTS Generic Fake Support Phone Scam Mar 9 M1;  
22,6182016/03/09 2022604  ET CURRENT_EVENTS Successful Enom Phish Mar 8; [1
22,6172016/03/09 2022602  ET CURRENT_EVENTS Microsoft Fake Support Phone Scam Mar 7;  
22,6162016/03/09 2022599  ET TROJAN OSX/KeRanger Ransomware CnC DNS Request 2; [1
22,6152016/03/09 2022600  ET TROJAN OSX/KeRanger Ransomware CnC DNS Request 3; [1
22,6142016/03/09 2022603  ET CURRENT_EVENTS Generic Fake Support Phone Scam Mar 8;  
22,6132016/03/09 2022597  ET CURRENT_EVENTS Possible Phishing Landing - Data URI Inline Javascript Mar 7; [1
22,6122016/03/09 2022601  ET TROJAN OSX/KeRanger Ransomware CnC DNS Request 4; [1
< 81  82  83  84  85  86  87  88  89  90 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.