[Emerging-updates] Daily Ruleset Update Summary 08/22/2014

Francis Trudeau ftrudeau at emergingthreats.net
Fri Aug 22 18:26:48 EDT 2014


 [***] Summary: [***]

 2 new Open signatures, 16 new Pro (2+14).  Sweet Orange, Various
Android, Meinhudong.A.

 Thanks:  Jake Warren.


 [+++]          Added rules:          [+++]

 Open:

  2018985 - ET TROJAN Suspicious User-Agent (Asteria md5) (trojan.rules)
  2018987 - ET CURRENT_EVENTS Sweet Orange EK Thread Specific Java
Exploit (current_events.rules)

 Pro:

  2808612 - ETPRO MALWARE Win32/FlyStudio Checkin (malware.rules)
  2808613 - ETPRO MOBILE_MALWARE RemoteAdmin.AndroidOS.Wodsha.a
Checkin (mobile_malware.rules)
  2808614 - ETPRO TROJAN Win32/Sality.H via SMTP (trojan.rules)
  2808615 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.MTK.d Checkin
(mobile_malware.rules)
  2808616 - ETPRO MOBILE_MALWARE Android/SMSreg.HS Checkin
(mobile_malware.rules)
  2808617 - ETPRO TROJAN VBS/Safa C2 (trojan.rules)
  2808618 - ETPRO MOBILE_MALWARE Android/HippoSms.B Request to C2
(mobile_malware.rules)
  2808619 - ETPRO TROJAN Win32/Meinhudong.A Checkin (trojan.rules)
  2808620 - ETPRO MALWARE PUP Adware/Crossrider Checkin (malware.rules)
  2808621 - ETPRO MALWARE PUP/Win32.IBryte Checkin via HTTP (malware.rules)
  2808622 - ETPRO TROJAN W32/Sohanad.ax Downloading PE (trojan.rules)
  2808623 - ETPRO MALWARE Adware C2 via Twitter (malware.rules)
  2808624 - ETPRO TROJAN Password Stealer PWS.Y!B2F Checkin 1 (trojan.rules)
  2808625 - ETPRO TROJAN Password Stealer PWS.Y!B2F Checkin 2 (trojan.rules)


 [///]     Modified active rules:     [///]

  2018960 - ET TROJAN ZeroLocker Downloading Config (trojan.rules)
  2018961 - ET TROJAN ZeroLocker Activity (trojan.rules)
  2018962 - ET TROJAN ZeroLocker Activity (trojan.rules)
  2018963 - ET CURRENT_EVENTS ZeroLocker EXE Download (current_events.rules)
  2018984 - ET TROJAN PlugX variant (trojan.rules)
  2806169 - ETPRO MOBILE_MALWARE Android.Enesoluty /
Trojan.AndroidOS.Maistealer.a Checkin (mobile_malware.rules)
  2808609 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.Iconosys.a Checkin 4
(mobile_malware.rules)


 [---]         Removed rules:         [---]

  2018903 - ET TROJAN Dyre SSL Self-Signed Cert Aug 06 2014 (trojan.rules)
  2808603 - ETPRO TROJAN Worm.Win32.SillyFDC Checkin (trojan.rules)


More information about the Emerging-updates mailing list