[Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging@emergingthreats.net
emerging at emergingthreats.net
Thu May 22 17:00:09 EDT 2008
[***] Results from Oinkmaster started Thu May 22 17:00:08 2008 [***]
[+++] Added rules: [+++]
2008244 - ET TROJAN ProxyBot Phone Home Traffic (emerging-virus.rules)
2008245 - ET TROJAN Unknown to Controller (emerging.rules)
2008246 - ET TROJAN Unknown ack from Controller (emerging.rules)
2008247 - ET TROJAN Unknown ack to Controller (emerging.rules)
[+++] Added non-rule lines: [+++]
-> Added to emerging-sid-msg.map (4):
2008244 || ET TROJAN ProxyBot Phone Home Traffic
2008245 || ET TROJAN Unknown to Controller
2008246 || ET TROJAN Unknown ack from Controller
2008247 || ET TROJAN Unknown ack to Controller
-> Added to emerging-sid-msg.map.txt (4):
2008244 || ET TROJAN ProxyBot Phone Home Traffic
2008245 || ET TROJAN Unknown to Controller
2008246 || ET TROJAN Unknown ack from Controller
2008247 || ET TROJAN Unknown ack to Controller
-> Added to emerging-virus.rules (1):
#by William Salusky of AOL
-> Added to emerging.rules (3):
#new CNC channel, sample has no AV detection, collected 5/14
#sigs by Jeffrey Brown
# Register the first comm w/ 7c, 1 byte packet
More information about the Emerging-sigs
mailing list