시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
24,3112017/02/18 2023963  ET TROJAN MAGICHOUND.LEASH IRC CnC Beacon; [1
24,3102017/02/18 2023964  ET CURRENT_EVENTS Successful WeTransfer Phish Oct 04 2016;  
24,3092017/02/18 2023959  ET TROJAN MAGICHOUND-related DNS Lookup (msservice .site); [1
24,3082017/02/18 2023961  ET TROJAN MAGICHOUND-related DNS Lookup (ntg-sa .com); [1
24,3072017/02/18 2023962  ET TROJAN MAGICHOUND-related DNS Lookup (briefl .ink); [1
24,3062017/02/18 2023955  ET TROJAN MAGICHOUND-related DNS Lookup (servicesystem .serveirc.com); [1
24,3052017/02/18 2023956  ET TROJAN MAGICHOUND-related DNS Lookup (analytics-google .org); [1
24,3042017/02/18 2023957  ET TROJAN MAGICHOUND-related DNS Lookup (com-adm .in); [1
24,3032017/02/18 2023958  ET TROJAN MAGICHOUND-related DNS Lookup (microsoftexplorerservices .cloud); [1
24,3022017/02/18 2023954  ET TROJAN MAGICHOUND-related DNS Lookup (timezone .live); [1
24,3012017/02/18 2023953  ET TROJAN MAGICHOUND-related DNS Lookup (chrome-up .date); [1
24,3002017/02/18 2023949  ET TROJAN Likely MAGICHOUND.FETCH Receiving PowerSploit PowerShell over HTTP; [1
24,2992017/02/18 2023951  ET TROJAN MAGICHOUND.FETCH CnC Beacon; [1
24,2982017/02/18 2023952  ET TROJAN MAGICHOUND.FETCH SSL Cert; [1
24,2972017/02/18 2023950  ET TROJAN MAGICHOUND.RETRIEVER CnC Beacon; [1
24,2962017/02/18 2023938  ET MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b DNS Lookup; [1
24,2952017/02/18 2023932  ET TROJAN Qadars CnC DNS Lookup (zkdef09i7ola.net);  
24,2942017/02/18 2023939  ET MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b DNS Lookup; [1
24,2932017/02/18 2023944  ET TROJAN Possibly Malicious Double Base64 Unicode Net.ServicePointManager M1;  
24,2922017/02/18 2023931  ET TROJAN APT29 Cache_DLL SSL Cert; [1
24,2912017/02/18 2023924  ET TROJAN MiniDuke CnC Beacon (string2_slide_1_1); [1
24,2902017/02/18 2023945  ET TROJAN Possibly Malicious Double Base64 Unicode Net.ServicePointManager M2;  
24,2892017/02/18 2023948  ET TROJAN MAGICHOUND.FETCH Retrieving Malicious PowerShell; [1
24,2882017/02/18 2023917  ET TROJAN APT28 Uploader Variant Fake Request to Google;  
24,2872017/02/18 2023918  ET TROJAN MiniDuke CnC Beacon (string1_slide_1_1); [1
24,2862017/02/18 2023920  ET TROJAN MiniDuke CnC Beacon (string1_slide_2_1); [1
24,2852017/02/18 2023941  ET TROJAN Possibly Malicious Base64 Unicode WebClient DownloadString M1;  
24,2842017/02/18 2023930  ET TROJAN Miniduke Variant CnC Beacon via WebDAV; [1
24,2832017/02/18 2023916  ET TROJAN APT28 Uploader Variant CnC Beacon;  
24,2822017/02/18 2023921  ET TROJAN MiniDuke CnC Beacon (string1_slide_2_2); [1
24,2812017/02/18 2023940  ET TROJAN MAGICHOUND.MPK Activity via IRC;  
24,2802017/02/18 2023933  ET MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b CnC Beacon; [1
24,2792017/02/18 2023913  ET TROJAN APT28 SEDNIT Variant CnC Beacon 2;  
24,2782017/02/18 2023915  ET TROJAN APT28 SEDNIT Variant CnC Beacon 4;  
24,2772017/02/18 2023943  ET TROJAN Possibly Malicious Base64 Unicode WebClient DownloadString M3;  
24,2762017/02/18 2023925  ET TROJAN MiniDuke CnC Beacon (string2_slide_1_2); [1
24,2752017/02/18 2023934  ET MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b Apps List Exfil; [1
24,2742017/02/18 2023937  ET MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b DNS Lookup; [1
24,2732017/02/18 2023935  ET MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b DNS Lookup; [1
24,2722017/02/18 2023929  ET TROJAN MiniDuke CnC Beacon (string2_slide_3_2); [1
24,2712017/02/18 2023926  ET TROJAN MiniDuke CnC Beacon (string2_slide_2_1); [1
24,2702017/02/18 2023947  ET TROJAN Possible Malicious PowerSploit PowerShell Script Observed over HTTP; [1
24,2692017/02/18 2023946  ET TROJAN Possibly Malicious Double Base64 Unicode Net.ServicePointManager M3;  
24,2682017/02/18 2023922  ET TROJAN MiniDuke CnC Beacon (string1_slide_3_1); [1
24,2672017/02/18 2023942  ET TROJAN Possibly Malicious Base64 Unicode WebClient DownloadString M2;  
24,2662017/02/18 2023919  ET TROJAN MiniDuke CnC Beacon (string1_slide_1_2); [1
24,2652017/02/18 2023927  ET TROJAN MiniDuke CnC Beacon (string2_slide_2_2);  
24,2642017/02/18 2023912  ET TROJAN APT28 SEDNIT Variant CnC Beacon 1;  
24,2632017/02/18 2023928  ET TROJAN MiniDuke CnC Beacon (string2_slide_3_1);  
24,2622017/02/18 2023923  ET TROJAN MiniDuke CnC Beacon (string1_slide_3_2); [1
< 51  52  53  54  55  56  57  58  59  60 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.