시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
24,9112017/08/15 2024546  ET CURRENT_EVENTS Successful Paypal Phish M3 Aug 14 2017;  
24,9102017/08/15 2024545  ET CURRENT_EVENTS Successful Paypal Phish M2 Aug 14 2017;  
24,9092017/08/15 2024544  ET CURRENT_EVENTS Successful Paypal Phish M1 Aug 14 2017;  
24,9082017/08/15 2024542  ET CURRENT_EVENTS Possible Successful Phish - Verify Email Error Message M2 Aug 14 2017;  
24,9072017/08/15 2024543  ET TROJAN Observed DNS Query to Unknown CnC Domain / GlobeImposter Payment Domain;  
24,9062017/08/15 2024541  ET CURRENT_EVENTS Possible Successful Phish - Verify Email Error Message M1 Aug 14 2017;  
24,9052017/08/12 2024536  ET CURRENT_EVENTS Possible AMSI Powershell Bypass Attempt B643;  
24,9042017/08/12 2024538  ET CURRENT_EVENTS Possible Veil Powershell Encoder B641;  
24,9032017/08/12 2024533  ET TROJAN [PTsecurity] Gozi/Ursnif Payload v12; [1
24,9022017/08/12 2024540  ET CURRENT_EVENTS Possible Veil Powershell Encoder B643;  
24,9012017/08/12 2024537  ET CURRENT_EVENTS Possible AMSI Powershell Bypass Attempt;  
24,9002017/08/12 2024535  ET CURRENT_EVENTS Possible AMSI Powershell Bypass Attempt B642;  
24,8992017/08/12 2024539  ET CURRENT_EVENTS Possible Veil Powershell Encoder B642;  
24,8982017/08/12 2024534  ET CURRENT_EVENTS Possible AMSI Powershell Bypass Attempt B641;  
24,8972017/08/11 2024531  ET TROJAN MSIL/CoalaBot CnC Activity;  
24,8962017/08/11 2024532  ET CURRENT_EVENTS Successful Mail.ru Phish Aug 10 2017;  
24,8952017/08/10 2024522  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8942017/08/10 2024527  ET POLICY Observed Dns Query to IP Lookup Domain (ipapi .co);  
24,8932017/08/10 2024523  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8922017/08/10 2024530  ET TROJAN OSX/Mughthesec/SafeFinder/OperatorMac Rogue Search Engine DNS Query Observed; [1
24,8912017/08/10 2024520  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8902017/08/10 2024517  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2,3
24,8892017/08/10 2024529  ET TROJAN OSX/Mughthesec/SafeFinder/OperatorMac DNS Query Observed;  
24,8882017/08/10 2024519  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8872017/08/10 2024528  ET TROJAN MSIL/Agent.ATS CnC Activity;  
24,8862017/08/10 2024526  ET POLICY Internal Host Retrieving External IP Address (monip.outils-rezo. info);  
24,8852017/08/10 2024524  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8842017/08/10 2024525  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8832017/08/10 2024521  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8822017/08/10 2024518  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2
24,8812017/08/10 2024516  ET TROJAN CryptON/Nemesis/X3M Ransomware Onion Domain; [1,2,3
24,8802017/08/09 2024515  ET CURRENT_EVENTS Magnitude EK Landing M2 Aug 05 2017;  
24,8792017/08/09 2024514  ET CURRENT_EVENTS Magnitude EK Landing M1 Aug 05 2017;  
24,8782017/08/04 2024513  ET TROJAN [PTsecurity] Win32/TinyNuke Payload ACF40 Inbound; [1
24,8772017/08/03 2024511  ET DOS SMBLoris NBSS Length Mem Exhaustion Attempt (PoC Based); [1
24,8762017/08/03 2024509  ET MOBILE_MALWARE ANDROIDOS_LEAKERLOCKER.HRX DNS Lookup; [1,2
24,8752017/08/03 2024512  ET TROJAN Observed Malicious Domain SSL Cert in SNI (JS_POWMET); [1
24,8742017/08/03 2024510  ET DOS Possible SMBLoris NBSS Length Mem Exhaustion Vuln Inbound; [1
24,8732017/08/02 2024506  ET TROJAN Observed DNS Query to Reborn/Ovidiy Stealer CnC Domain;  
24,8722017/08/02 2024507  ET CURRENT_EVENTS RIG encrypted payload M1 Aug 01 2017;  
24,8712017/08/02 2024508  ET CURRENT_EVENTS Nemucod JS Downloader Aug 01 2017;  
24,8702017/07/31 2024503  ET TROJAN ISMAgent Receiving Commands from CnC Server; [1,2
24,8692017/07/31 2024505  ET INFO Phishery Phishing Tool - Default SSL Certificate Observed; [1
24,8682017/07/31 2024502  ET TROJAN ISMAgent CnC Checkin 1; [1,2
24,8672017/07/31 2024504  ET TROJAN ISMAgent DNS Tunneling (microsoft-publisher . com); [1,2
24,8662017/07/28 2024501  ET TROJAN Revcode RAT CnC 2;  
24,8652017/07/28 2024500  ET TROJAN Revcode RAT CnC;  
24,8642017/07/27 2024499  ET TROJAN Win32/BanloadDownloader.XZY Retrieving Payload;  
24,8632017/07/26 2024496  ET TROJAN CopyKittens Matryoshka DNS Lookup 2 (twiter-statics . info); [1
24,8622017/07/26 2024497  ET TROJAN CopyKittens Cobalt Strike DNS Lookup (cloudflare-analyse . com); [1
< 41  42  43  44  45  46  47  48  49  50 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.