시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,9612015/10/21 2021964  ET CURRENT_EVENTS Fake Virus Phone Scam Landing Oct 19 M2;  
21,9602015/10/17 2021958  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9592015/10/17 2021960  ET TROJAN PlugX or EvilGrab DNS Lookup (websecexp.com); [1
21,9582015/10/17 2021962  ET TROJAN PlugX DNS Lookup (mailsecurityservice.com); [1
21,9572015/10/17 2021961  ET TROJAN PlugX or EvilGrab DNS Lookup (appeur.gnway.cc); [1
21,9562015/10/17 2021959  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9552015/10/17 2021956  ET TROJAN Nemucod Downloading Payload 2; [1
21,9542015/10/17 2021952  ET TROJAN JS/Nemucod.M.gen requesting EXE payload; [1
21,9532015/10/17 2021957  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9522015/10/17 2021955  ET TROJAN JS/Nemucod.M.gen downloading PDF payload; [1
21,9512015/10/17 2021953  ET TROJAN JS/Nemucod.M.gen requesting PDF payload; [1
21,9502015/10/17 2021954  ET TROJAN JS/Nemucod.M.gen downloading EXE payload; [1
21,9492015/10/17 2021951  ET CURRENT_EVENTS Possible Magento Directory Traversal Attempt; [1
21,9482015/10/16 2021950  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9472015/10/16 2021949  ET SCAN abdullkarem Wordpress PHP Scanner;  
21,9462015/10/15 2021948  ET CURRENT_EVENTS Possible Upatre/Dyre/Kegotip SSL Cert Oct 12 2015; [1
21,9452015/10/14 2021944  ET CURRENT_EVENTS Netgear Multiple Router Auth Bypass; [1
21,9442015/10/14 2021946  ET TROJAN Possible Dridex SSL Cert Oct 12 2015;  
21,9432015/10/14 2021947  ET TROJAN Win32/Kelihos.F Checkin;  
21,9422015/10/14 2021945  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9412015/10/11 2021939  ET CURRENT_EVENTS Magnitude EK Landing Oct 08 2015;  
21,9402015/10/11 2021940  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9392015/10/11 2021941  ET WEB_CLIENT Proxy - OWASP Zed Attack Proxy Certificate Seen;  
21,9382015/10/11 2021943  ET WEB_CLIENT Proxy - Fiddler Proxy Certificate Seen;  
21,9372015/10/11 2021942  ET WEB_CLIENT Proxy - BurpSuite PortSwigger Proxy Certificate Seen;  
21,9362015/10/09 2021932  ET DELETED ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9352015/10/09 2021934  ET DELETED ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9342015/10/09 2021935  ET TROJAN Possible PlugX DNS Lookup (googlemanage.com); [1
21,9332015/10/09 2021938  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9322015/10/09 2021937  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9312015/10/09 2021936  ET TROJAN Possible PlugX DNS Lookup (operaa.net); [1
21,9302015/10/09 2021930  ET TROJAN MSIL/Banker.M Requesting Binary from SQL; [1
21,9292015/10/09 2021933  ET DELETED ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9282015/10/09 2021928  ET MOBILE_MALWARE Android/Keymoge Checkin; [1
21,9272015/10/09 2021925  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9262015/10/09 2021926  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9252015/10/09 2021929  ET MOBILE_MALWARE Android/Keymoge Checkin 2; [1
21,9242015/10/09 2021931  ET TROJAN MSIL/Banker.M Downloading Binary from SQL; [1
21,9232015/10/09 2021927  ET MOBILE_MALWARE Android/Keymoge DNS Lookup; [1
21,9222015/10/09 2021923  ET TROJAN Win32/Neshta.A Posting Data;  
21,9212015/10/09 2021924  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM); [1
21,9202015/10/09 2021922  ET TROJAN StartPage Userclass HTTP Request;  
21,9192015/10/07 2021921  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9182015/10/07 2021918  ET TROJAN DustySky Checkin;  
21,9172015/10/07 2021919  ET TROJAN DustySky CnC Beacon;  
21,9162015/10/07 2021920  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC); [1
21,9152015/10/07 2021917  ET TROJAN ELF/muBoT User-Agent (I'm a mu mu mu ?); [1
21,9142015/10/07 2021916  ET TROJAN ELF/muBoT IRC Activity 5; [1
21,9132015/10/07 2021915  ET TROJAN ELF/muBoT IRC Activity 4; [1
21,9122015/10/07 2021913  ET TROJAN ELF/muBoT IRC Activity 2; [1
< 101  102  103  104  105  106  107  108  109  110 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.