시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
26,3612018/08/01 2025926  ET TROJAN Win32/Bisonal DNS Lookup 3; [1
26,3602018/08/01 2025923  ET TROJAN Win32/Bisonal RC4 Encrypted 8 Byte Static CnC Checkin; [1
26,3592018/08/01 2025920  ET POLICY IP Check Domain (showmyipaddress .com in HTTP Host);  
26,3582018/08/01 2025921  ET TROJAN [eSentire] Remcos RAT Checkin 24;  
26,3572018/08/01 2025927  ET TROJAN Win32/Bisonal DNS Lookup 4; [1
26,3562018/08/01 2025925  ET TROJAN Win32/Bisonal DNS Lookup 2; [1
26,3552018/07/31 2025919  ET CURRENT_EVENTS Paypal Phishing Landing 2018-07-30;  
26,3542018/07/29 2025916  ET CURRENT_EVENTS Possible Underminer EK Landing;  
26,3532018/07/29 2025914  ET CURRENT_EVENTS Underminer EK Flash Exploit;  
26,3522018/07/29 2025917  ET WEB_SPECIFIC_APPS Modx Revolution < 2.6.4 phpthumb.php RCE Attempt; [1
26,3512018/07/29 2025915  ET CURRENT_EVENTS Underminer EK Flash Check;  
26,3502018/07/29 2025918  ET TROJAN Observed Malicious SSL Cert (Micropsia CnC Domain); [1
26,3492018/07/27 2025911  ET CURRENT_EVENTS Underminer EK IE Exploit;  
26,3482018/07/27 2025912  ET CURRENT_EVENTS Possible Malvertising Redirect to EK M1;  
26,3472018/07/27 2025909  ET CURRENT_EVENTS Tech Support Phone Scam Landing 2017-07-26;  
26,3462018/07/27 2025910  ET CURRENT_EVENTS Tech Support Phone Scam Landing 2017-07-26;  
26,3452018/07/27 2025908  ET CURRENT_EVENTS Tech Support Phone Scam Landing 2017-07-26;  
26,3442018/07/26 2025900  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 10; [1
26,3432018/07/26 2025902  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 12; [1
26,3422018/07/26 2025896  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 6; [1
26,3412018/07/26 2025899  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 9; [1
26,3402018/07/26 2025905  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 15; [1
26,3392018/07/26 2025903  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 13; [1
26,3382018/07/26 2025901  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 11; [1
26,3372018/07/26 2025904  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 14; [1
26,3362018/07/26 2025891  ET TROJAN OilRig QUADAGENT CnC Domain in SNI; [1
26,3352018/07/26 2025893  ET CURRENT_EVENTS [eSentire] Successful 163 Webmail Phish 2018-07-25;  
26,3342018/07/26 2025906  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 16; [1
26,3332018/07/26 2025897  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 7; [1
26,3322018/07/26 2025892  ET TROJAN Observed Malicious SSL Cert (OilRig QUADAGENT CnC); [1
26,3312018/07/26 2025890  ET USER_AGENTS VPNFilter Related UA (Hakai/2.0); [1
26,3302018/07/26 2025894  ET TROJAN OilRig QUADAGENT DNS Tunneling; [1
26,3292018/07/26 2025898  ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 8; [1
26,3282018/07/26 2025895  ET MOBILE_MALWARE Android Golden Rat Checkin; [1
26,3272018/07/26 2025907  ET EXPLOIT Oracle WebLogic Unrestricted File Upload (CVE-2018-2894); [1
26,3262018/07/26 2025889  ET USER_AGENTS VPNFilter Related UA (Gemini/2.0); [1
26,3252018/07/25 2025882  ET EXPLOIT MVPower DVR Shell UCE MSF Check; [1
26,3242018/07/25 2025884  ET EXPLOIT Multiple CCTV-DVR Vendors RCE; [1
26,3232018/07/25 2025888  ET EXPLOIT Remote Command Execution via Android Debug Bridge 2; [1
26,3222018/07/25 2025880  ET CURRENT_EVENTS Volexity ? JS Sniffer Data Theft Beacon Detected; [1
26,3212018/07/25 2025883  ET EXPLOIT MVPower DVR Shell UCE; [1
26,3202018/07/25 2025885  ET TROJAN AZORult Variant.4 Checkin M2; [1
26,3192018/07/25 2025881  ET CURRENT_EVENTS JS Sniffer Framework Sending to CnC; [1
26,3182018/07/25 2025887  ET EXPLOIT Remote Command Execution via Android Debug Bridge; [1
26,3172018/07/25 2025886  ET CURRENT_EVENTS [eSentire] DHL Phish Landing July 24 2018;  
26,3162018/07/21 2025879  ET ATTACK_RESPONSE passwd file Outbound from WEB SERVER Linux;  
26,3152018/07/21 2025877  ET WEB_SPECIFIC_APPS XML External Entity Information Disclosure; [1
26,3142018/07/21 2025876  ET CURRENT_EVENTS LinkedIn Phishing Landing 2017-07-20;  
26,3132018/07/21 2025872  ET CURRENT_EVENTS Fake 404 With Hidden Login Form;  
26,3122018/07/21 2025878  ET WEB_SPECIFIC_APPS XML External Entity Remote Code Execution; [1
< 11  12  13  14  15  16  17  18  19  20 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.