시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,7612015/09/23 2021807  ET TROJAN XCodeGhost DNS Lookup; [1
21,7602015/09/23 2021804  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,7592015/09/23 2021805  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Rovnix CnC); [1
21,7582015/09/23 2021801  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7572015/09/20 2021800  ET TROJAN Win32/Spy.Odlanor CnC Checkin; [1
21,7562015/09/19 2021799  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7552015/09/19 2021798  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7542015/09/19 2021797  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7532015/09/18 2021795  ET TROJAN Iron Tiger HTTPBrowser DNS Lookup (trendmicro-update.org); [1
21,7522015/09/18 2021796  ET TROJAN Possible Passthru/Kshell Port Redirection Initiation; [1
21,7512015/09/18 2021794  ET TROJAN Iron Tiger Backdoor.GTalkTrojan DNS Lookup (update.gtalklite.com); [1
21,7502015/09/18 2021792  ET TROJAN Iron Tiger Gh0ST/PlugX/Various Backdoors DNS Lookup (gameofthrones.ddns.net); [1
21,7492015/09/18 2021793  ET TROJAN Iron Tiger Likely PlugX DNS Lookup (chrome.servehttp.com); [1
21,7482015/09/18 2021788  ET TROJAN Iron Tiger DNSTunnel DNS Lookup (xssok.blogspot.com); [1
21,7472015/09/18 2021790  ET TROJAN Iron Tiger Backdoor.GCloud CnC Beacon; [1
21,7462015/09/18 2021791  ET TROJAN PlugX UDP CnC Beacon; [1
21,7452015/09/18 2021789  ET TROJAN Iron Tiger DNSTunnel Retrieving CnC; [1
21,7442015/09/17 2021783  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7432015/09/17 2021786  ET CURRENT_EVENTS Unknown Malicious Second Stage Download URI Struct Sept 15 2015;  
21,7422015/09/17 2021785  ET TROJAN SYNful Knock Cisco IOS Router Implant CnC Beacon (INBOUND); [1
21,7412015/09/17 2021787  ET CURRENT_EVENTS Unknown Malicious Second Stage Download URI Struct Sept 15 2015;  
21,7402015/09/17 2021784  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC); [1
21,7392015/09/17 2021776  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7382015/09/17 2021781  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7372015/09/17 2021779  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7362015/09/17 2021780  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7352015/09/17 2021775  ET TROJAN AlphaCrypt Connectivity Check 1;  
21,7342015/09/17 2021777  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7332015/09/17 2021782  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7322015/09/17 2021778  ET CURRENT_EVENTS Cryptowall docs campaign Sept 2015 encrypted binary (1);  
21,7312015/09/16 2021774  ET TROJAN PE EXE or DLL Windows file download Text;  
21,7302015/09/16 2021771  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,7292015/09/16 2021773  ET CURRENT_EVENTS Possible Upatre/Dyre/Kegotip SSL Cert Sept 14 2015; [1
21,7282015/09/16 2021770  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7272015/09/16 2021772  ET TROJAN Malicious SSL certificate detected (FindPOS); [1
21,7262015/09/16 2021769  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7252015/09/16 2021764  ET CURRENT_EVENTS Possible Spartan EK Secondary Flash Exploit DL M2;  
21,7242015/09/16 2021767  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,7232015/09/16 2021765  ET CURRENT_EVENTS Possible Spartan EK Payload;  
21,7222015/09/13 2021762  ET CURRENT_EVENTS Spartan EK Secondary Flash Exploit DL; [1
21,7212015/09/13 2021760  ET CURRENT_EVENTS PHISH Generic Webmail - Landing Page Sept 11;  
21,7202015/09/13 2021763  ET CURRENT_EVENTS Possible Spartan EK Landing Sept 12 2015; [1
21,7192015/09/13 2021761  ET CURRENT_EVENTS Possible PHISH - Generic Status Messages Sept 11;  
21,7182015/09/12 2021759  ET EXPLOIT Possible Android Stagefright MP4 CVE-2015-1538 - STSC; [1
21,7172015/09/12 2021758  ET EXPLOIT Possible Android Stagefright MP4 CVE-2015-1538 - ROP; [1
21,7162015/09/12 2021757  ET EXPLOIT Possible Android Stagefright MP4 CVE-2015-1538 - Shell; [1
21,7152015/09/11 2021756  ET EXPLOIT FireEye Appliance Unauthorized File Disclosure; [1
21,7142015/09/11 2021755  ET CURRENT_EVENTS possible Sofacy encrypted binary (1); [1,2
21,7132015/09/11 2021753  ET TROJAN Backdoor family PCRat/Gh0st CnC traffic (OUTBOUND) 103; [1
21,7122015/09/11 2021754  ET TROJAN Corebot Module Download 2; [1
< 101  102  103  104  105  106  107  108  109  110 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.