시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
21,3112015/06/24 2021322  ET CURRENT_EVENTS Possible PHISH Remax - AOL Creds;  
21,3102015/06/24 2021318  ET TROJAN Ransomware Variant .onion proxy Domain (kurrmpfx6kgmsopm);  
21,3092015/06/24 2021316  ET TROJAN Linux/ChinaZ DDoS Bot Checkin 2; [1
21,3082015/06/24 2021317  ET TROJAN Win32/Ascrirac .onion proxy Domain (5sse6j4kdaeh3yus);  
21,3072015/06/24 2021314  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Spy.Shiz CnC); [1
21,3062015/06/20 2021313  ET CURRENT_EVENTS Suspicious JS Observed in Unknown EK Landing;  
21,3052015/06/20 2021311  ET INFO User-Agent (wininet);  
21,3042015/06/20 2021309  ET CURRENT_EVENTS CottonCastle/Niteris EK Flash Exploit URI Struct June 19 2015;  
21,3032015/06/20 2021310  ET CURRENT_EVENTS CottonCastle/Niteris EK Landing June 19 2015;  
21,3022015/06/20 2021312  ET CURRENT_EVENTS Likely Malicious wininet UA Downloading EXE;  
21,3012015/06/20 2021308  ET CURRENT_EVENTS CottonCastle/Niteris EK Payload June 19 2015;  
21,3002015/06/20 2021307  ET CURRENT_EVENTS CottonCastle/Niteris EK Exploit URI Struct June 19 2015;  
21,2992015/06/20 2021306  ET CURRENT_EVENTS Likely CottonCastle/Niteris EK Response June 19 2015;  
21,2982015/06/20 2021305  ET CURRENT_EVENTS CottonCastle/Niteris EK Landing URI Struct June 19 2015 M3;  
21,2972015/06/20 2021302  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain (bpq4dub4rlivvswu); [1
21,2962015/06/20 2021303  ET TROJAN TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain (gzc7lj4rvmkg25dm); [1
21,2952015/06/20 2021304  ET TROJAN W2KM_BARTALEX Downloading Payload 2;  
21,2942015/06/20 2021301  ET TROJAN Downloader.Win32.Adload (KaiXin Payload) Checkin Response;  
21,2932015/06/20 2021294  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 17 2015 M1;  
21,2922015/06/20 2021297  ET CURRENT_EVENTS Successful Fake Login Page Credential Theft June 17 2015 M2;  
21,2912015/06/20 2021298  ET CURRENT_EVENTS Successful Fake Login Page Credential Theft June 17 2015 M3;  
21,2902015/06/20 2021299  ET TROJAN Downloader.Win32.Adload (KaiXin Payload) Config Download;  
21,2892015/06/20 2021295  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 17 2015 M2;  
21,2882015/06/20 2021296  ET CURRENT_EVENTS Successful Fake Login Page Credential Theft June 17 2015 M1;  
21,2872015/06/20 2021300  ET TROJAN Downloader.Win32.Adload (KaiXin Payload) Checkin;  
21,2862015/06/19 2021287  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 16 2015 M3;  
21,2852015/06/19 2021291  ET CURRENT_EVENTS KaiXin Landing M4;  
21,2842015/06/19 2021290  ET TROJAN Netwire RAT Client Check-in 2;  
21,2832015/06/19 2021293  ET CURRENT_EVENTS KaiXin Secondary Landing Page;  
21,2822015/06/19 2021289  ET TROJAN Malicious SSL certificate detected (FindPOS); [1
21,2812015/06/19 2021284  ET TROJAN W2KM_BARTALEX Downloading Payload;  
21,2802015/06/19 2021285  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 16 2015 M1;  
21,2792015/06/19 2021286  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 16 2015 M2;  
21,2782015/06/19 2021288  ET CURRENT_EVENTS Fake AV Phone Scam Landing June 16 2015 M4;  
21,2772015/06/19 2021292  ET CURRENT_EVENTS KaiXin Secondary Landing Page;  
21,2762015/06/17 2021282  ET MALWARE Win32/DownloadAssistant.A PUP CnC; [1
21,2752015/06/17 2021283  ET MALWARE PUP Win32/DownloadAssistant.A Checkin;  
21,2742015/06/17 2021279  ET TROJAN Backdoor.Elise SSL Cert; [1
21,2732015/06/17 2021277  ET TROJAN Backdoor.Elise CnC Beacon 3 M1; [1
21,2722015/06/17 2021275  ET TROJAN Backdoor.Elise CnC Beacon 1 M2; [1
21,2712015/06/17 2021274  ET TROJAN Backdoor.Elise CnC Beacon 1 M1; [1
21,2702015/06/17 2021278  ET TROJAN Backdoor.Elise CnC Beacon 3 M2; [1
21,2692015/06/17 2021276  ET TROJAN Backdoor.Elise CnC Beacon 2; [1
21,2682015/06/17 2021281  ET CURRENT_EVENTS Angler EK XTEA encrypted binary (11) M2;  
21,2672015/06/17 2021280  ET CURRENT_EVENTS Angler EK XTEA encrypted binary (16) M2;  
21,2662015/06/16 2021271  ET CURRENT_EVENTS Angler EK Landing URI Struct Jun 15 M3;  
21,2652015/06/16 2021273  ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TeslaCrypt MITM);  
21,2642015/06/16 2021269  ET CURRENT_EVENTS Angler EK Landing URI Struct Jun 15;  
21,2632015/06/16 2021270  ET CURRENT_EVENTS Angler EK Landing URI Struct Jun 15 M2;  
21,2622015/06/16 2021268  ET TROJAN Gatak CnC; [1
< 111  112  113  114  115  116  117  118  119  120 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.