[Emerging-updates] Daily Ruleset Update Summary 2018/07/26

Travis Green tgreen at emergingthreats.net
Thu Jul 26 12:52:49 HDT 2018


[***]            Summary:            [***]

6 new Open, 14 new Pro (6 + 8). Underminer EK, W32.Degree38.A, Various
Mobile, Phishing.


[+++]          Added rules:          [+++]

Open:

 2025908 - ET CURRENT_EVENTS Tech Support Phone Scam Landing 2017-07-26
(current_events.rules)
 2025909 - ET CURRENT_EVENTS Tech Support Phone Scam Landing 2017-07-26
(current_events.rules)
 2025910 - ET CURRENT_EVENTS Tech Support Phone Scam Landing 2017-07-26
(current_events.rules)
 2025911 - ET CURRENT_EVENTS Underminer EK IE Exploit (current_events.rules)
 2025912 - ET CURRENT_EVENTS Possible Malvertising Redirect to EK M1
(current_events.rules)
 2025913 - ET CURRENT_EVENTS Possible Malvertising EK Redirect to EK M2
(current_events.rules)

Pro:

 2831968 - ETPRO USER_AGENTS Darkware User-Agent (Darkware)
(user_agents.rules)
 2831969 - ETPRO TROJAN Win32/CoinMiner.Downloader Receiving Config
(trojan.rules)
 2831970 - ETPRO MALWARE MSIL.SysCleaner.PUP Sending System Info
(malware.rules)
 2831971 - ETPRO MOBILE_MALWARE Android/Agent.ARD Variant CnC Checkin
(mobile_malware.rules)
 2831972 - ETPRO TROJAN W32.Degree38.A Checkin (trojan.rules)
 2831973 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2018-07-26 1) (trojan.rules)
 2831974 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2018-07-26 2) (trojan.rules)
 2831975 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2018-07-26 3) (trojan.rules)



-- 
PGP: 0xBED7B297
<https://pgp.mit.edu/pks/lookup?op=get&search=0x6B68453CBED7B297>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20180726/07b51bc0/attachment.html>


More information about the Emerging-updates mailing list