[Emerging-updates] Daily Ruleset Update Summary 2017/03/02

Francis Trudeau ftrudeau at emergingthreats.net
Thu Mar 2 17:00:42 EST 2017


 [***] Summary: [***]

 23 new Pro signatures.  Zeus Panda Banker, Bunitu, PowerShell Empire.

 [+++]          Added rules:          [+++]

  2825187 - ETPRO CURRENT_EVENTS Successful AT&T Account Update Phish Mar
01 2017 (current_events.rules)
  2825188 - ETPRO CURRENT_EVENTS Successful Amazon Mobile Phish Mar 01 2017
(current_events.rules)
  2825189 - ETPRO TROJAN Win32.Orsam/Cosmo Checkin 3 (trojan.rules)
  2825190 - ETPRO CURRENT_EVENTS Successful OfferUp Phish Mar 01 2017
(current_events.rules)
  2825191 - ETPRO TROJAN MSIL/Unk HTTP CnC Activity (trojan.rules)
  2825192 - ETPRO CURRENT_EVENTS Successful Twitter Verification Phish M1
Mar 01 2017 (current_events.rules)
  2825193 - ETPRO CURRENT_EVENTS Successful Twitter Verification Phish M2
Mar 01 2017 (current_events.rules)
  2825194 - ETPRO CURRENT_EVENTS Magnitude EK Soc Eng Mar 01 2017 M1
(current_events.rules)
  2825195 - ETPRO CURRENT_EVENTS Magnitude EK Soc Eng Mar 01 2017 M2
(current_events.rules)
  2825196 - ETPRO TROJAN Win64/Agent.GR CnC Beacon (trojan.rules)
  2825197 - ETPRO MOBILE_MALWARE Trojan-Clicker.AndroidOS.Simpo.bo Checkin
(mobile_malware.rules)
  2825198 - ETPRO TROJAN Win32.Bunitu DNS Lookup (trojan.rules)
  2825199 - ETPRO CURRENT_EVENTS Successful University of New Hampshire
Phish Mar 02 2017 (current_events.rules)
  2825200 - ETPRO TROJAN Zeus Panda Banker Malicious SSL Certificate
Detected (trojan.rules)
  2825201 - ETPRO MOBILE_MALWARE RiskTool.AndroidOS.Dnotua.oe CnC Beacon
(mobile_malware.rules)
  2825202 - ETPRO TROJAN PowerShell Empire Malicious SSL Certificate
Detected (trojan.rules)
  2825203 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.SmsThief.ac SMS/Contact
Exfil via SMTP (mobile_malware.rules)
  2825204 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.SmsThief.ac SMS/Contact
Exfil via SMTP 2 (mobile_malware.rules)
  2825205 - ETPRO TROJAN Zeus Panda Injects Domain in SNI (trojan.rules)
  2825206 - ETPRO MOBILE_MALWARE Android.Trojan.InfoStealer.EZ Checkin
(mobile_malware.rules)
  2825207 - ETPRO TROJAN Zeus Panda Banker Malicious SSL Certificate
Detected (trojan.rules)
  2825208 - ETPRO CURRENT_EVENTS SunDown EK T2 Flash Exploit URI Struct
March 02 2017 (current_events.rules)
  2825209 - ETPRO TROJAN Zeus Panda Injects Domain in SNI (trojan.rules)


 [///]     Modified active rules:     [///]

  2807561 - ETPRO TROJAN Bunitu Covert Channel Session Init (trojan.rules)
  2819866 - ETPRO MOBILE_MALWARE Android.Trojan.Downloader.CI Checkin
(mobile_malware.rules)
  2824531 - ETPRO CURRENT_EVENTS Successful Aol Phish Jan 19 2017
(current_events.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20170302/83b71971/attachment.html>


More information about the Emerging-updates mailing list