시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
22,5612016/02/20 2022541  ET TROJAN Possible OceanLotus C2 Checkin; [1
22,5602016/02/20 2022540  ET TROJAN Possible OceanLotus CnC Heartbeat; [1
22,5592016/02/20 2022543  ET EXPLOIT Possible CVE-2015-7547 Long Response to A lookup;  
22,5582016/02/20 2022542  ET EXPLOIT Possible 2015-7547 PoC Server Response;  
22,5572016/02/20 2022545  ET EXPLOIT Possible CVE-2015-7547 Malformed Server Response A/AAAA;  
22,5562016/02/20 2022546  ET EXPLOIT Possible CVE-2015-7547 A/AAAA Record Lookup Possible Forced FallBack(fb set);  
22,5552016/02/20 2022539  ET TROJAN Possible OceanLotus Time Check to Microsoft.com; [1
22,5542016/02/19 2022536  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC); [1
22,5532016/02/19 2022530  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Feb 17;  
22,5522016/02/19 2022533  ET POLICY HotSpotShield Activity;  
22,5512016/02/19 2022538  ET TROJAN Ransomware Locky CnC Beacon;  
22,5502016/02/19 2022535  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
22,5492016/02/19 2022534  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC); [1
22,5482016/02/19 2022537  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC); [1
22,5472016/02/19 2022531  ET EXPLOIT Possible 2015-7547 Malformed Server response;  
22,5462016/02/18 2022526  ET CURRENT_EVENTS Fake Hard Drive Delete Scam Landing Feb 16 M2;  
22,5452016/02/18 2022528  ET CURRENT_EVENTS Fake Hard Drive Delete Scam Landing Feb 16 M4;  
22,5442016/02/18 2022529  ET TROJAN W32/GCman.Backdoor CnC Beacon; [1
22,5432016/02/18 2022527  ET CURRENT_EVENTS Fake Hard Drive Delete Scam Landing Feb 16 M3;  
22,5422016/02/18 2022525  ET CURRENT_EVENTS Fake Hard Drive Delete Scam Landing Feb 16 M1;  
22,5412016/02/18 2022523  ET WEB_CLIENT Internet Explorer Memory Corruption Vulnerability (CVE-2016-0063);  
22,5402016/02/18 2022524  ET EXPLOIT MS16-009 IE MSHTML Form Element Type Confusion (CVE-2016-0061);  
22,5392016/02/16 2022522  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
22,5382016/02/16 2022520  ET POLICY Possible HTA Application Download; [1
22,5372016/02/16 2022521  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
22,5362016/02/14 2022515  ET EXPLOIT Possible CVE-2016-1287 Invalid Fragment Size Inbound 2; [1
22,5352016/02/14 2022517  ET MOBILE_MALWARE Android/Fakeinst.KD .onion Proxy Domain; [1
22,5342016/02/14 2022519  ET TROJAN Bedep Connectivity Check M3;  
22,5332016/02/14 2022513  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC); [1
22,5322016/02/14 2022518  ET EXPLOIT D-Link DCS-930L Remote Command Execution attempt; [1
22,5312016/02/14 2022516  ET EXPLOIT Possible CVE-2016-1287 Invalid Fragment Size Inbound 3; [1
22,5302016/02/14 2022514  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC); [1
22,5292016/02/14 2022512  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC); [1
22,5282016/02/14 2022510  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC); [1
22,5272016/02/14 2022511  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC); [1
22,5262016/02/13 2022505  ET TROJAN W32/Gaudox Checkin;  
22,5252016/02/13 2022509  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
22,5242016/02/13 2022508  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex); [1
22,5232016/02/13 2022507  ET TROJAN TeslaCrypt/AlphaCrypt Payment DNS Lookup;  
22,5222016/02/13 2022506  ET EXPLOIT Possible CVE-2016-1287 Invalid Fragment Size Inbound; [1
22,5212016/02/12 2022502  ET TROJAN Suspicious Accept in HTTP POST - Possible Alphacrypt/TeslaCrypt;  
22,5202016/02/12 2022504  ET TROJAN Alphacrypt/TeslaCrypt Ransomware CnC Beacon;  
22,5192016/02/12 2022500  ET CURRENT_EVENTS Xbagger Macro Encrypted DL;  
22,5182016/02/12 2022501  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Payment Domain(fwgrhsao3aoml7ej);  
22,5172016/02/12 2022503  ET CURRENT_EVENTS Dridex AlphaNum DL Feb 10 2016;  
22,5162016/02/10 2022495  ET TROJAN Win32/HydraCrypt CnC Beacon 1;  
22,5152016/02/10 2400030  ET DROP Spamhaus DROP Listed Traffic Inbound group 31; [1
22,5142016/02/10 2022498  ET CURRENT_EVENTS Successful Apple Phish Feb 6th M2;  
22,5132016/02/10 2022499  ET CURRENT_EVENTS Successful Apple Phish Feb 6th M3;  
22,5122016/02/10 2022497  ET CURRENT_EVENTS Successful Apple Phish Feb 6th M1;  
< 91  92  93  94  95  96  97  98  99  100 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.