[Emerging-updates] Live Commit Output

emerging@emergingthreats.net emerging at emergingthreats.net
Sat Jul 17 13:45:59 EDT 2010


[***] Results from Oinkmaster started Sat Jul 17 13:45:58 2010 [***]

[///]     Modified active rules:     [///]

 2002781 - ET TROJAN w32agent.dsi Posting Info (emerging-virus.rules)
 2002782 - ET TROJAN w32agent.dsi Domain Update (emerging-virus.rules)
 2009353 - ET TROJAN Bredolab Downloader Communicating With Controller (1) (emerging-virus.rules)
 2009354 - ET TROJAN Bredolab Downloader Communicating With Controller (2) (emerging-virus.rules)
 2009360 - ET TROJAN Bredolab Check In (emerging-virus.rules)
 2009388 - ET TROJAN Bredolab Downloader Response Binaries from Controller (emerging-virus.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to emerging-sid-msg.map (5):
        2002781 || ET TROJAN w32agent.dsi Posting Info || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002781
        2002782 || ET TROJAN w32agent.dsi Domain Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002782
        2009353 || ET TROJAN Bredolab Downloader Communicating With Controller (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009353 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader%3aWin32/Bredolab.B
        2009354 || ET TROJAN Bredolab Downloader Communicating With Controller (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009354 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader%3aWin32/Bredolab.B
        2009388 || ET TROJAN Bredolab Downloader Response Binaries from Controller || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009388 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader%3aWin32/Bredolab.B

     -> Added to emerging-sid-msg.map.txt (5):
        2002781 || ET TROJAN w32agent.dsi Posting Info || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002781
        2002782 || ET TROJAN w32agent.dsi Domain Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002782
        2009353 || ET TROJAN Bredolab Downloader Communicating With Controller (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009353 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader%3aWin32/Bredolab.B
        2009354 || ET TROJAN Bredolab Downloader Communicating With Controller (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009354 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader%3aWin32/Bredolab.B
        2009388 || ET TROJAN Bredolab Downloader Response Binaries from Controller || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009388 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader%3aWin32/Bredolab.B

[---]     Removed non-rule lines:    [---]

     -> Removed from emerging-sid-msg.map (5):
        2002781 || ET TROJAN w32agent.dsi Posting Info || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002781 || url,nepenthes.sourceforge.net/analysis\:w32agent.dsi
        2002782 || ET TROJAN w32agent.dsi Domain Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002782 || url,nepenthes.sourceforge.net/analysis\:w32agent.dsi
        2009353 || ET TROJAN Bredolab Downloader Communicating With Controller (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009353 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader\:Win32/Bredolab.B
        2009354 || ET TROJAN Bredolab Downloader Communicating With Controller (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009354 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader\:Win32/Bredolab.B
        2009388 || ET TROJAN Bredolab Downloader Response Binaries from Controller || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009388 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader\:Win32/Bredolab.B

     -> Removed from emerging-sid-msg.map.txt (5):
        2002781 || ET TROJAN w32agent.dsi Posting Info || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002781 || url,nepenthes.sourceforge.net/analysis\:w32agent.dsi
        2002782 || ET TROJAN w32agent.dsi Domain Update || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_W32Agent.dsi || url,doc.emergingthreats.net/2002782 || url,nepenthes.sourceforge.net/analysis\:w32agent.dsi
        2009353 || ET TROJAN Bredolab Downloader Communicating With Controller (1) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009353 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader\:Win32/Bredolab.B
        2009354 || ET TROJAN Bredolab Downloader Communicating With Controller (2) || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009354 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader\:Win32/Bredolab.B
        2009388 || ET TROJAN Bredolab Downloader Response Binaries from Controller || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/VIRUS/TROJAN_Bredolab || url,doc.emergingthreats.net/2009388 || url,www.microsoft.com/security/portal/Entry.aspx?Name=TrojanDownloader\:Win32/Bredolab.B



More information about the Emerging-updates mailing list