[Emerging-updates] Daily Ruleset Update Summary 06/03/2014

Francis Trudeau ftrudeau at emergingthreats.net
Wed Jun 4 19:17:58 EDT 2014


 [***] Summary: [***]

 12 new Open rules, 19 new Pro (12+7).  Soraya, Various Android.

 Thanks:  Jake Warren and @jaimeblascob.

 [+++]          Added rules:          [+++]

 Pro:

  2018518 - ET TROJAN Trojan.Win32.VBKrypt.cugq Checkin (trojan.rules)
  2018519 - ET TROJAN Soraya C2 User-Agent (trojan.rules)
  2018520 - ET MOBILE_MALWARE AndroidOS/Lotoor.Q (mobile_malware.rules)
  2018522 - ET TROJAN Soraya C2 User-Agent (default) (trojan.rules)
  2018523 - ET TROJAN Soraya C2 User-Agent (rhyno321) (trojan.rules)
  2018524 - ET TROJAN Soraya C2 User-Agent (SBTCM) (trojan.rules)
  2018525 - ET TROJAN Soraya C2 User-Agent (slayer) (trojan.rules)
  2018526 - ET TROJAN Soraya C2 User-Agent (Vulture) (trojan.rules)
  2018527 - ET TROJAN Soraya C2 User-Agent (VHIbot/1.0) (trojan.rules)
  2018528 - ET TROJAN Soraya C2 User-Agent (xehanort321) (trojan.rules)
  2018529 - ET TROJAN Soraya C2 User-Agent (x09) (trojan.rules)
  2018530 - ET TROJAN Win32.Trojan.Agent.U3D7V0 Checkin (trojan.rules)

 Pro:

  2808127 - ETPRO MOBILE_MALWARE Android/AndroBack.A Checkin
(mobile_malware.rules)
  2808128 - ETPRO MOBILE_MALWARE Android/AndroBack.A Checkin 2
(mobile_malware.rules)
  2808129 - ETPRO MOBILE_MALWARE Trojan-SMS.AndroidOS.Agent.gl Checkin
(mobile_malware.rules)
  2808130 - ETPRO MOBILE_MALWARE Trojan-SMS.AndroidOS.Agent.gl Checkin 2
(mobile_malware.rules)
  2808131 - ETPRO MOBILE_MALWARE Android.Trojan.FakeBank.K Checkin
(mobile_malware.rules)
  2808132 - ETPRO CURRENT_EVENTS DRIVEBY Malicious Plugin Detect URI struct
(current_events.rules)
  2808133 - ETPRO MOBILE_MALWARE Trojan-SMS.AndroidOS.FakeInst.fv Checkin
(mobile_malware.rules)


 [///]     Modified active rules:     [///]

  2003480 - ET POLICY Radmin Remote Control Session Setup Response
(policy.rules)
  2003482 - ET POLICY Radmin Remote Control Session Authentication Response
(policy.rules)
  2008567 - ET TROJAN Win32.Crypt.nc Checkin (trojan.rules)
  2806155 - ETPRO TROJAN Worm.Win32.Vobfus Checkin 3 (trojan.rules)
  2806881 - ETPRO TROJAN TrojanProxy.Win32/Hioles.B CnC (trojan.rules)


 [---]         Removed rules:         [---]

  2017348 - ET TROJAN Trojan.Win32.VBKrypt.cugq Checkin (trojan.rules)
  2802092 - ETPRO TROJAN Trojan.Win32.VBKrypt.cugq Checkin (trojan.rules)
  2807910 - ETPRO TROJAN Win32/Injector.BANJ Checkin (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20140604/6d7ff604/attachment.html>


More information about the Emerging-updates mailing list