[Emerging-updates] Daily Ruleset Update Summary 2/17/2011

Matthew Jonkman jonkman at emergingthreatspro.com
Thu Feb 17 14:33:55 EST 2011


We have a number of new sigs and tweaks in the queue, and posted to the lists. We'll have those in asap! Likely in another update this afternoon. 

[+++]          Added rules:          [+++]

 2012313 - ET USER_AGENTS Suspicious User-Agent Moxilla (user_agents.rules)
 2012314 - ET TROJAN Rootkit TDSS/Alureon Checkin 2 (trojan.rules)
 2801347 - ETPRO TROJAN Mariposa or Palevo Bot Checkin to Server (trojan.rules)
 2801348 - ETPRO TROJAN Mariposa or Palevo Bot Response from Server (trojan.rules)


[///]     Modified active rules:     [///]

 2000562 - ET TROJAN OUTBOUND Suspicious Email Attachment (trojan.rules)
 2001046 - ET TROJAN UPX compressed file download possible malware (trojan.rules)
 2001047 - ET MALWARE UPX encrypted file download possible malware (malware.rules)
 2001933 - ET TROJAN PWS Banker Trojan Sending Report of Infection (trojan.rules)
 2012116 - ET WEB_SERVER DD-WRT Information Disclosure Attempt (web_server.rules)


----------------------------------------------------
Matthew Jonkman
Emergingthreats.net
Emerging Threats Pro
Open Information Security Foundation (OISF)
Phone 765-807-8630
Fax 312-264-0205
http://www.emergingthreatspro.com
http://www.openinfosecfoundation.org
----------------------------------------------------

PGP: http://www.jonkmans.com/mattjonkman.asc





More information about the Emerging-updates mailing list