[Emerging-updates] Daily Ruleset Update Summary 01/20/2014

Francis Trudeau ftrudeau at emergingthreats.net
Mon Jan 20 10:33:47 HAST 2014


 [***] Summary: [***]

 5 new Open rules, 8 new Pro (5/3).  PCRat/Gh0st, Angler EK, Outbrowse,
Virut.ce, Zbot.

 Thanks to:  @EKwatcher, Travis Green and Kevin Ross.

 [+++]          Added rules:          [+++]

 Open:

  2017988 - ET TROJAN Backdoor family PCRat/Gh0st CnC traffic (OUTBOUND) 16
(trojan.rules)
  2017989 - ET CURRENT_EVENTS Angler EK encrypted binary (4)
(current_events.rules)
  2017990 - ET TROJAN Cybergate/Rebhip/Spyrat Backdoor Keepalive
(trojan.rules)
  2017991 - ET TROJAN Cybergate/Rebhip/Spyrat Backdoor Keepalive Response
(trojan.rules)
  2017992 - ET TROJAN Win32/OutBrowse.G Variant Checkin (trojan.rules)

 Pro:

  2807496 - ETPRO TROJAN Trojan/Win32.Zbot Covert Channel port 53
(trojan.rules)
  2807497 - ETPRO TROJAN Virus.Win32.Virut.ce Checkin 3 (trojan.rules)
  2807498 - ETPRO TROJAN Virus.Win32.Virut.ce Checkin 4 (trojan.rules)


 [---]         Removed rules:         [---]

  2802015 - ETPRO TROJAN Cybergate/Rebhip/Spyrat Backdoor Keepalive
(trojan.rules)
  2802016 - ETPRO TROJAN Cybergate/Rebhip/Spyrat Backdoor Keepalive
Response (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20140120/4b2f3c57/attachment.html>


More information about the Emerging-updates mailing list