[Emerging-updates] Daily Ruleset Update Summary 2019/10/03

Jason Williams jwilliams at emergingthreats.net
Thu Oct 3 15:23:51 HDT 2019


[***]            Summary:            [***]

  29 new Pro. Hythy Ransomware, CobInt, Remcos, Various Certs, Various
Phish.

  Please share issues, feedback, and requests at
https://feedback.emergingthreats.net/feedback

 [+++]          Added rules:          [+++]

 Pro:

  2838723 - ETPRO MOBILE_MALWARE RiskTool.AndroidOS.Wapron.dp Checkin
(mobile_malware.rules)
  2838724 - ETPRO MOBILE_MALWARE Android/Hiddad.AFW Checkin
(mobile_malware.rules)
  2838725 - ETPRO TROJAN MSIL/Hythy Ransomware CnC Activity (trojan.rules)
  2838726 - ETPRO TROJAN MSIL/Unk.Various Ransomware CnC Checkin
(trojan.rules)
  2838727 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (Maldoc DL
2019-10-03) (current_events.rules)
  2838728 - ETPRO TROJAN Observed Malicious SSL Cert (Cobalt Strike CnC)
(trojan.rules)
  2838729 - ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC)
(trojan.rules)
  2838730 - ETPRO TROJAN EvilVBS Loader Retrieving Payload (trojan.rules)
  2838731 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (CobInt DL
2019-10-03) (current_events.rules)
  2838732 - ETPRO TROJAN Observed Malicious SSL Cert (CobInt CnC)
(trojan.rules)
  2838733 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (Maldoc DL
2019-10-03 2) (current_events.rules)
  2838734 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (Maldoc DL
2019-10-03 3) (current_events.rules)
  2838735 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2019-10-02 1) (trojan.rules)
  2838736 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2019-10-02 2) (trojan.rules)
  2838737 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2019-10-02 3) (trojan.rules)
  2838738 - ETPRO CURRENT_EVENTS Successful Amazon Phish 2019-10-03
(current_events.rules)
  2838739 - ETPRO CURRENT_EVENTS Successful Desjardins Phish 2019-10-03
(current_events.rules)
  2838740 - ETPRO CURRENT_EVENTS Successful Yahoo Phish 2019-10-03
(current_events.rules)
  2838741 - ETPRO CURRENT_EVENTS Successful Office 365 Phish 2019-10-03
(current_events.rules)
  2838742 - ETPRO CURRENT_EVENTS Successful Bancolombia Phish 2019-10-03
(current_events.rules)
  2838743 - ETPRO CURRENT_EVENTS Successful Bancolombia Phish 2019-10-03
(current_events.rules)
  2838744 - ETPRO CURRENT_EVENTS Successful Homeaway Phish 2019-10-03
(current_events.rules)
  2838745 - ETPRO CURRENT_EVENTS Successful Bank of America Phish
2019-10-03 (current_events.rules)
  2838746 - ETPRO CURRENT_EVENTS Successful Bank of America Phish
2019-10-03 (current_events.rules)
  2838747 - ETPRO CURRENT_EVENTS Successful RBC Royal Bank Phish 2019-10-03
(current_events.rules)
  2838748 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2019-10-03
(current_events.rules)
  2838749 - ETPRO TROJAN Generic Browser Stealer ZIP Exfil (trojan.rules)
  2838750 - ETPRO TROJAN Win32/Remcos RAT Checkin 189 (trojan.rules)
  2838751 - ETPRO TROJAN Win32/Remcos RAT Checkin 190 (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20191003/5272075c/attachment.html>


More information about the Emerging-updates mailing list