[Emerging-updates] Daily Ruleset Update Summary 06/17/2014

Francis Trudeau ftrudeau at emergingthreats.net
Tue Jun 17 19:01:21 EDT 2014


 [***] Summary: [***]

 4 new Open signatures, 9 new Pro.  Andromeda, Asprox, Various Android.

 Thanks:  Kevin Ross.

 [+++]          Added rules:          [+++]

 Open:

  2018574 - ET TROJAN W32/Asprox.Bot Knock Variant CnC Beacon (trojan.rules)
  2018575 - ET TROJAN Possible Andromeda download with fake Zip header (1)
(trojan.rules)
  2018576 - ET TROJAN Possible Andromeda download with fake Zip header (2)
(trojan.rules)
  2018577 - ET CURRENT_EVENTS Safe/CritX/FlashPack EK Secondary Landing 2
(current_events.rules)

 Pro:

  2808198 - ETPRO MOBILE_MALWARE Android/SMSreg.GB Checkin
(mobile_malware.rules)
  2808199 - ETPRO MOBILE_MALWARE Android.Trojan.FakeInst.DZ Checkin
(mobile_malware.rules)
  2808200 - ETPRO TROJAN Virus Total vtapi DOS (trojan.rules)
  2808201 - ETPRO TROJAN Win32/Locotout.gen!A Checkin (trojan.rules)
  2808202 - ETPRO TROJAN suspicious User-Agent (None) (trojan.rules)


 [///]     Modified active rules:     [///]

  2008043 - ET TROJAN Suspicious User-Agent (c \windows) (trojan.rules)
  2010756 - ET TROJAN Sasfis Botnet Client Reporting Back to Controller
After Command Execution (trojan.rules)
  2805068 - ETPRO TROJAN Backdoor.Win32.Poison Checkin (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20140617/fbd1275d/attachment.html>


More information about the Emerging-updates mailing list