[Emerging-updates] Daily Ruleset Update Summary 09/13/2013

Will Metcalf wmetcalf at emergingthreatspro.com
Fri Sep 13 10:56:46 HADT 2013


 [***]          Summary:          [***]

 7 new Open rules. 12 new Pro rules (7/5). EK's, CAnchorElement
Use-After-Free, ZeroAccess, etc.

[+++]          Added rules:          [+++]

  Open:
  2017457 - ET INFO SUSPICIOUS Java request to UNI.ME <http://uni.me/> Domain
Set 1 (info.rules)
  2017458 - ET INFO SUSPICIOUS Java request to UNI.ME <http://uni.me/> Domain
Set 2 (info.rules)
  2017459 - ET INFO SUSPICIOUS Java request to UNI.ME <http://uni.me/> Domain
Set 3 (info.rules)
  2017460 - ET INFO SUSPICIOUS Java request to UNI.ME <http://uni.me/> Domain
Set 4 (info.rules)
  2017461 - ET CURRENT_EVENTS Blackhole obfuscated base64 decoder Sep 12
2013 (current_events.rules)
  2017462 - ET TROJAN ZeroAccess P2P Module v6 Reporting (trojan.rules)
  2017463 - ET WEB_CLIENT MS13-055 CAnchorElement Use-After-Free
(web_client.rules)

  Pro:
  2807013 - ETPRO MOBILE_MALWARE Android/Spy.Smsir.B Checkin
(mobile_malware.rules)
  2807014 - ETPRO MOBILE_MALWARE Trojan-SMS.AndroidOS.FakeInst.eh Checkin
(mobile_malware.rules)
  2807015 - ETPRO TROJAN Win32/Agent.NLG Checkin (trojan.rules)
  2807016 - ETPRO TROJAN Unknown Trojan Checkin (trojan.rules)
  2807017 - ETPRO TROJAN  Backdoor.Win32.GF.13x.A Checkin (trojan.rules)


 [///]     Modified active rules:     [///]

  2017167 - ET CURRENT_EVENTS X20 EK Landing July 22 2013
(current_events.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20130913/c3c10a8d/attachment.html>


More information about the Emerging-updates mailing list