[Emerging-updates] Daily Ruleset Update Summary 06/24/2014

Francis Trudeau ftrudeau at emergingthreats.net
Tue Jun 24 19:17:51 EDT 2014


 [***] Summary: [***]

 7 new Open signatures.  Citadel, c99 Shell Backdoor, Andromeda.

 Thanks:  Kevin Ross and @kafeine

 [+++]          Added rules:          [+++]

  2018598 - ET TROJAN Citadel Checkin (trojan.rules)
  2018599 - ET TROJAN W32/Citadel Download From CnC Server /files/
attachment (trojan.rules)
  2018600 - ET CURRENT_EVENTS Possible Upatre/Zbot SSL Cert svr2
(current_events.rules)
  2018601 - ET WEB_SERVER c99 Shell Backdoor Var Override URI (web_server.rules)
  2018602 - ET WEB_SERVER c99 Shell Backdoor Var Override Cookie
(web_server.rules)
  2018603 - ET WEB_SERVER c99 Shell Backdoor Var Override Client Body
(web_server.rules)
  2018604 - ET TROJAN Andromeda Downloading Module (trojan.rules)


 [///]     Modified active rules:     [///]

  2018591 - ET CURRENT_EVENTS Trojan-Banker.JS.Banker fraudulent
redirect boleto payment code (current_events.rules)
  2807616 - ETPRO TROJAN Win32/Spy.Agent.OIB Checkin (trojan.rules)
  2808218 - ETPRO TROJAN Win32/Necurs Checkin 5 (trojan.rules)


More information about the Emerging-updates mailing list