시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
22,1612015/11/27 2022158  ET TROJAN Possible CopyKittens DNS Lookup (img.gmailtagmanager.com); [1
22,1602015/11/27 2022159  ET TROJAN Possible CopyKittens DNS Lookup (kernel4windows.in); [1
22,1592015/11/27 2022156  ET TROJAN Possible CopyKittens DNS Lookup (haaretz-news.com); [1
22,1582015/11/27 2022157  ET TROJAN Possible CopyKittens DNS Lookup (heartax.info); [1
22,1572015/11/27 2022152  ET TROJAN Possible CopyKittens DNS Lookup (fbstatic-a.xyz); [1
22,1562015/11/27 2022153  ET TROJAN Possible CopyKittens DNS Lookup (fbstatic-akamaihd.com); [1
22,1552015/11/27 2022154  ET TROJAN Possible CopyKittens DNS Lookup (gmailtagmanager.com); [1
22,1542015/11/27 2022147  ET TROJAN Matryoshka CnC Beacon 2; [1
22,1532015/11/27 2022148  ET TROJAN Possible CopyKittens DNS Lookup (alhadath.mobi); [1
22,1522015/11/27 2022155  ET TROJAN Possible CopyKittens DNS Lookup (haaretz.link); [1
22,1512015/11/27 2022150  ET TROJAN Possible CopyKittens DNS Lookup (cacheupdate14.com); [1
22,1502015/11/27 2022151  ET TROJAN Possible CopyKittens DNS Lookup (fbstatic-a.space); [1
22,1492015/11/27 2022146  ET TROJAN Matryoshka CnC Beacon 1; [1
22,1482015/11/27 2022149  ET TROJAN Possible CopyKittens DNS Lookup (big-windowss.com); [1
22,1472015/11/26 2022143  ET CURRENT_EVENTS Angler encrypted payload Nov 23 (6);  
22,1462015/11/26 2022145  ET TROJAN Critroni .onion Proxy Domain (tmclybfqzgkaeilm);  
22,1452015/11/26 2022141  ET CURRENT_EVENTS Angler encrypted payload Nov 23 (4);  
22,1442015/11/26 2022144  ET MOBILE_MALWARE Android/TrojanDropper.Agent.EP HTTP Host; [1
22,1432015/11/26 2022142  ET CURRENT_EVENTS Angler encrypted payload Nov 23 (5);  
22,1422015/11/26 2022140  ET CURRENT_EVENTS Angler encrypted payload Nov 23 (3);  
22,1412015/11/26 2022137  ET MOBILE_MALWARE Trojan-Banker.AndroidOS.Acecard.c Checkin; [1
22,1402015/11/26 2022138  ET CURRENT_EVENTS Angler encrypted payload Nov 23 (1);  
22,1392015/11/26 2022139  ET CURRENT_EVENTS Angler encrypted payload Nov 23 (2);  
22,1382015/11/26 2022134  ET WEB_CLIENT Possible eDellRoot Rogue Root CA; [1
22,1372015/11/26 2022135  ET CURRENT_EVENTS Possible Spartan/Nuclear EK Payload;  
22,1362015/11/26 2022136  ET CURRENT_EVENTS Netsolhost SSL Proxying - Possible Phishing;  
22,1352015/11/22 2022125  ET CURRENT_EVENTS Fake AV Phone Scam Landing Nov 20;  
22,1342015/11/22 2022124  ET TROJAN Win32.Sharik Microsoft Connectivity Check;  
22,1332015/11/22 2022123  ET POLICY IP Lookup Geoip.co.uk;  
22,1322015/11/20 2022120  ET TROJAN Nymaim.BA CnC M2; [1
22,1312015/11/20 2022119  ET TROJAN Nymaim.BA CnC M1; [1
22,1302015/11/20 2022122  ET TROJAN Sofacy DNS Lookup;  
22,1292015/11/20 2022121  ET TROJAN Sofacy DNS Lookup;  
22,1282015/11/19 2022118  ET EXPLOIT Serialized Spring Java Object Generated by ysoserial; [1
22,1272015/11/19 2022117  ET EXPLOIT Serialized Groovy Java Object Generated by ysoserial; [1
22,1262015/11/19 2022116  ET EXPLOIT Serialized Java Object Generated by ysoserial; [1
22,1252015/11/19 2022115  ET EXPLOIT Serialized Java Object Calling Common Collection Function; [1
22,1242015/11/19 2022113  ET CURRENT_EVENTS BlackHole EK Landing Nov 17 2015;  
22,1232015/11/19 2022114  ET EXPLOIT Serialized Java Object Calling Common Collection Function; [1
22,1222015/11/19 2022111  ET TROJAN r0 CnC GET; [1
22,1212015/11/19 2022107  ET TROJAN r0 CnC Architecture GET 2; [1
22,1202015/11/19 2022109  ET TROJAN r0 CnC Architecture GET 4; [1
22,1192015/11/19 2022112  ET CURRENT_EVENTS Possible Nuclear EK Landing Nov 17 2015;  
22,1182015/11/19 2022110  ET TROJAN r0 CnC Report GET; [1
22,1172015/11/19 2022108  ET TROJAN r0 CnC Architecture GET 3; [1
22,1162015/11/19 2022106  ET TROJAN r0 CnC Architecture GET 1; [1
22,1152015/11/19 2022105  ET TROJAN r0 CnC Check; [1
22,1142015/11/18 2022103  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Nov 16;  
22,1132015/11/18 2022101  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Downloader CnC); [1
22,1122015/11/18 2022102  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Downloader CnC); [1
< 91  92  93  94  95  96  97  98  99  100 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.