[Emerging-updates] Daily Ruleset Update Summary 2017/05/15

Travis Green tgreen at emergingthreats.net
Mon May 15 17:08:50 EDT 2017


[***]            Summary:            [***]

2 new Open, 27 new Pro (2 + 25). WannaCry DNS, Various Mobile.
Thanks: @R3MRUM, @LowsonWebmin, @benkow_


[+++]          Added rules:          [+++]

Open:

 2024293 - ET TROJAN Possible WannaCry DNS Lookup (trojan.rules)
 2024294 - ET TROJAN Possible WannaCry DNS Lookup (trojan.rules)

Pro:

 2826375 - ETPRO TROJAN DNS Query to Sage Domain (eho23d . net)
(trojan.rules)
 2826376 - ETPRO TROJAN DNS Query to Cerber Domain (1mqvsc . top)
(trojan.rules)
 2826377 - ETPRO TROJAN DNS Query to Cerber Domain (133chr . top)
(trojan.rules)
 2826378 - ETPRO TROJAN DNS Query to Cerber Domain (1hkjl3 . top)
(trojan.rules)
 2826379 - ETPRO TROJAN DNS Query to Cerber Domain (1jyhqc . top)
(trojan.rules)
 2826380 - ETPRO TROJAN DNS Query to Cerber Domain (1fgsmc . top)
(trojan.rules)
 2826381 - ETPRO TROJAN DNS Query to Cerber Domain (1fgsmc . top)
(trojan.rules)
 2826382 - ETPRO TROJAN DNS Query to Cerber Domain (12m58x . top)
(trojan.rules)
 2826383 - ETPRO TROJAN DNS Query to Cerber Domain (127axt . top)
(trojan.rules)
 2826384 - ETPRO TROJAN DNS Query to Cerber Domain (16nxpn . top)
(trojan.rules)
 2826385 - ETPRO TROJAN Cobalt Strike Malleable C2 OCSP Profile
(trojan.rules)
 2826386 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
102 (mobile_malware.rules)
 2826387 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
103 (mobile_malware.rules)
 2826388 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
104 (mobile_malware.rules)
 2826389 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
105 (mobile_malware.rules)
 2826390 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
106 (mobile_malware.rules)
 2826391 - ETPRO TROJAN Zloader HTTP Checkin (trojan.rules)
 2826392 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
107 (mobile_malware.rules)
 2826393 - ETPRO CURRENT_EVENTS Evil Redirector Leading to EK Keitaro TDS
May 15 2017 (current_events.rules)
 2826394 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
108 (mobile_malware.rules)
 2826395 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
109 (mobile_malware.rules)
 2826396 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
110 (mobile_malware.rules)
 2826397 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
111 (mobile_malware.rules)
 2826398 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
112 (mobile_malware.rules)
 2826399 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin
113 (mobile_malware.rules)


[///]     Modified active rules:     [///]


-- 
PGP: 0xBED7B297
<https://pgp.mit.edu/pks/lookup?op=get&search=0x6B68453CBED7B297>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20170515/e031bc69/attachment.html>


More information about the Emerging-updates mailing list