시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
27,1112018/12/12 2026721  ET TROJAN Win32/DanaBot Harvesting Email Addresses 1; [1]  
27,1102018/12/12 2026720  ET TROJAN Win32/DanaBot Harvesting Email Addresses 2; [1]  
27,1092018/12/12 2026719  ET WEB_SERVER HP Intelligent Management Java Deserialization RCE Attempt; [1]  
27,1082018/12/11 2026717  ET TROJAN ELF/Samba CnC Checkin; [1]  
27,1072018/12/11 2026718  ET POLICY External IP Lookup Domain (ifconfig .me);  
27,1062018/12/09 2026716  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,1052018/12/09 2026711  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,1042018/12/09 2026712  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,1032018/12/09 2026715  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,1022018/12/09 2026713  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,1012018/12/09 2026703  ET TROJAN Observed Malicious SSL Cert (Cobalt Group/More_Eggs CnC); [1
27,1002018/12/09 2026708  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0992018/12/09 2026709  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0982018/12/09 2026707  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0972018/12/09 2026710  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0962018/12/09 2026714  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0952018/12/09 2026705  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0942018/12/09 2026704  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0932018/12/09 2026706  ET TROJAN Cobalt Group/More_Eggs CnC Domain in DNS Lookup; [1
27,0922018/12/07 2026700  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0912018/12/07 2026688  ET TROJAN [PTsecurity] WeChat (Ransomware/Stealer) HttpHeader;  
27,0902018/12/07 2026689  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0892018/12/07 2026693  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0882018/12/07 2026699  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0872018/12/07 2026697  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0862018/12/07 2026690  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0852018/12/07 2026696  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0842018/12/07 2026701  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0832018/12/07 2026692  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0822018/12/07 2026694  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0812018/12/07 2026698  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0802018/12/07 2026695  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0792018/12/07 2026702  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0782018/12/07 2026687  ET TROJAN [PTsecurity] WeChat (Ransomware/Stealer) Config; [1
27,0772018/12/07 2026691  ET TROJAN STOLENPENCIL CnC Domain in DNS Lookup; [1
27,0762018/12/06 2026686  ET CURRENT_EVENTS Observed DNS Query for MageCart Data Exfil Domain; [1
27,0752018/12/06 2026685  ET CURRENT_EVENTS Observed DNS Query for MageCart Data Exfil Domain; [1
27,0742018/12/06 2026684  ET INFO Certificate with Unknown Content M2; [1
27,0732018/12/02 2026682  ET DELETED Delphi APT28 Zebrocy/Zekapab Reporting to CnC; [1
27,0722018/12/02 2026683  ET TROJAN MSIL APT28 Zebrocy/Zekapab Reporting to CnC; [1
27,0712018/12/01 2026681  ET TROJAN DNSpionage Requesting Config; [1
27,0702018/12/01 2026676  ET CURRENT_EVENTS Inbound PowerShell Saving Base64 Decoded Payload to Temp M2 2018-11-29; [1
27,0692018/12/01 2026679  ET CURRENT_EVENTS Observed Malicious SSL Cert (POWERSTATS Proxy CnC); [1
27,0682018/12/01 2026680  ET TROJAN DNS Query for DNSpionage CnC Domain; [1
27,0672018/12/01 2026678  ET CURRENT_EVENTS Observed Malicious SSL Cert (POWERSTATS Proxy CnC); [1
27,0662018/12/01 2026674  ET INFO Minimal HTTP GET Request to Bit.ly;  
27,0652018/12/01 2026677  ET CURRENT_EVENTS Inbound PowerShell Executing Base64 Decoded VBE from Temp 2018-11-29; [1
27,0642018/12/01 2026673  ET TROJAN IcedID WebSocket Request;  
27,0632018/12/01 2026675  ET CURRENT_EVENTS Inbound PowerShell Saving Base64 Decoded Payload to Temp M1 2018-11-29; [1
27,0622018/11/30 2026671  ET TROJAN L0rdix Stealer CnC Data Exfil; [1
1  2  3  4  5  6  7  8  9  10 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.