[Emerging-Sigs] Daily Ruleset Update Summary 2019/10/09

Brandon Murphy bmurphy at emergingthreats.net
Wed Oct 9 14:15:20 HDT 2019


[***]            Summary:            [***]

  21 new Pro. Cobalt Strike, Various Phishing, CoinMiner and SSL.

  Please share issues, feedback, and requests at
https://feedback.emergingthreats.net/feedback

[+++]          Added rules:          [+++]

Pro:

  2838832 - ETPRO TROJAN Win32/Cobalt Strike Malleable C2 CnC Activity
(trojan.rules)
  2838833 - ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC)
(trojan.rules)
  2838834 - ETPRO TROJAN Observed Malicious SSL Cert (CobInt CnC)
(trojan.rules)
  2838835 - ETPRO TROJAN Observed Malicious SSL Cert (MalDoc DL 2019-10-09)
(trojan.rules)
  2838836 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL
2019-10-09 2) (current_events.rules)
  2838837 - ETPRO TROJAN Observed Malicious SSL Cert (Get2 CnC)
(trojan.rules)
  2838838 - ETPRO TROJAN Observed Get2 CnC Domain in TLS SNI (trojan.rules)
  2838839 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2019-10-08 1) (trojan.rules)
  2838840 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2019-10-08 2) (trojan.rules)
  2838841 - ETPRO CURRENT_EVENTS Successful Generic Email Verification
Phish 2019-10-09 (current_events.rules)
  2838842 - ETPRO CURRENT_EVENTS Successful American Express Phish
2019-10-09 (current_events.rules)
  2838843 - ETPRO CURRENT_EVENTS Successful American Express Phish
2019-10-09 (current_events.rules)
  2838844 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information
Phish 2019-10-09 (current_events.rules)
  2838845 - ETPRO CURRENT_EVENTS Successful Bank of America Phish
2019-10-09 (current_events.rules)
  2838846 - ETPRO CURRENT_EVENTS Successful Regio Bank Phish 2019-10-09
(current_events.rules)
  2838847 - ETPRO CURRENT_EVENTS Successful Google Drive Phish 2019-10-09
(current_events.rules)
  2838848 - ETPRO CURRENT_EVENTS Successful SMBC Phish 2019-10-09
(current_events.rules)
  2838849 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information
Phish 2019-10-09 (current_events.rules)
  2838850 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2019-10-09 1) (trojan.rules)
  2838851 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2019-10-09 2) (trojan.rules)
  2838853 - ETPRO TROJAN Possible Win32/Zebrocy CnC Checkin (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-sigs/attachments/20191009/ab66ee4e/attachment.html>


More information about the Emerging-sigs mailing list