[Emerging-updates] Daily Ruleset Update Summary 06/20/2013

Will Metcalf wmetcalf at emergingthreatspro.com
Thu Jun 20 08:59:53 HADT 2013


[***]          Summary:          [***]

4 New Open rules. 20 new Pro rules (16/4). Javadoc Redirect 2013-1571,
Redkit, Seinup, etc.

[+++]          Added rules:          [+++]

  Open:
  2017036 - ET TROJAN Activity related to APT.Seinup Checkin 1
(trojan.rules)
  2017037 - ET CURRENT_EVENTS Javadoc API Redirect CVE-2013-1571
(current_events.rules)
  2017038 - ET CURRENT_EVENTS RedKit Jar Download June 20 2013
 (current_events.rules)
  2017039 - ET CURRENT_EVENTS RedKit Payload Download (current_events.rules)

  Pro:
  2806526 - ETPRO TROJAN Trojan.Win32.Swrort.A CnC INBOUND (trojan.rules)
  2806527 - ETPRO TROJAN Troj/Qhosts-BE Checkin (trojan.rules)
  2806528 - ETPRO TROJAN Troj/Qhosts-BE User-Agent (TinyDownloadManager)
(trojan.rules)
  2806529 - ETPRO TROJAN Trojan-Dropper.Win32.Rooter.f Checkin
(trojan.rules)
  2806530 - ETPRO TROJAN Win32.PoniPatcher.A .exe Download (trojan.rules)
  2806532 - ETPRO TROJAN Win32/ProxyChanger.GJ Checkin (trojan.rules)
  2806533 - ETPRO TROJAN Trojan-Downloader.Win32.Agent.cfbr Checkin
(trojan.rules)
  2806534 - ETPRO TROJAN AutoIt.Kilim Checkin (trojan.rules)
  2806535 - ETPRO TROJAN Win32/Xolondox.A Checkin 1 (trojan.rules)
  2806536 - ETPRO TROJAN Win32/Xolondox.A Checkin 2 (trojan.rules)
  2806537 - ETPRO TROJAN Win32/Xolondox.A Checkin 3 (trojan.rules)
  2806538 - ETPRO TROJAN Trojan.Win32.Jorik.Agent.qbf Checkin (trojan.rules)
  2806539 - ETPRO TROJAN Trojan.Win32.Jorik.Drefir.ot Checkin (trojan.rules)
  2806540 - ETPRO TROJAN Win32/Obfuscator.XZ Checkin 2 (trojan.rules)
  2806541 - ETPRO TROJAN Backdoor.Win32.Agent.dboe Checkin (trojan.rules)
  2806542 - ETPRO TROJAN Worm.Win32.Luder.atmf Checkin (trojan.rules)


 [///]     Modified active rules:     [///]

  2011848 - ET TROJAN Win32/Comotor.A!dll Reporting 1 (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20130620/6654a906/attachment.html>


More information about the Emerging-updates mailing list