시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
25,0112017/09/01 2024639  ET CURRENT_EVENTS Successful Bitstamp Cryptocurrency Exchange Phish Aug 30 2017;  
25,0102017/09/01 2024640  ET CURRENT_EVENTS Successful LocalBitcoins Cryptocurrency Exchange Phish Aug 30 2017;  
25,0092017/09/01 2024642  ET TROJAN Gazer DNS query observed (mydreamhoroscope.com); [1
25,0082017/09/01 2024641  ET TROJAN Gazer DNS query observed (soligro.com); [1
25,0072017/08/31 2405072  ET CNC Shadowserver Reported CnC Server Port 40669 Group 1; [1,2
25,0062017/08/31 2024636  ET TROJAN ABUSE.CH Cerber Ransomware Domain Detected; [1
25,0052017/08/31 2024635  ET TROJAN ABUSE.CH Cerber Ransomware Domain Detected; [1
25,0042017/08/31 2024637  ET TROJAN Gazer HTTP POST Checkin; [1
25,0032017/08/31 2024633  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
25,0022017/08/31 2024629  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
25,0012017/08/31 2024624  ET CURRENT_EVENTS Possible NatWest Bank Phishing Landing - Title over non SSL;  
25,0002017/08/31 2024628  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
24,9992017/08/31 2024626  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
24,9982017/08/31 2024623  ET CURRENT_EVENTS Possible NatWest Bank Phishing Landing - Title over non SSL;  
24,9972017/08/31 2024621  ET CURRENT_EVENTS Successful Paxful Cryptocurrency Wallet Phish Aug 30 2017;  
24,9962017/08/31 2024622  ET CURRENT_EVENTS Possible NatWest Bank Phishing Landing - Title over non SSL;  
24,9952017/08/31 2024627  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
24,9942017/08/31 2024632  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
24,9932017/08/31 2024634  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
24,9922017/08/31 2024630  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
24,9912017/08/31 2024631  ET TROJAN DeepEnd Research Ransomware Domain Detected; [1
24,9902017/08/31 2024625  ET TROJAN Win32/ASPC Bot CnC Checkin M3;  
24,9892017/08/31 2024620  ET TROJAN ISMAgent DNS Lookup (msoffice-cdn . com); [1
24,9882017/08/30 2405070  ET CNC Shadowserver Reported CnC Server Port 33333 Group 1; [1,2
24,9872017/08/30 2405071  ET CNC Shadowserver Reported CnC Server Port 40669 Group 1; [1,2
24,9862017/08/30 2024619  ET TROJAN APT12 THREEBYTE DNS Lookup; [1
24,9852017/08/29 2405069  ET CNC Shadowserver Reported CnC Server Port 40669 Group 1; [1,2
24,9842017/08/29 2024614  ET CURRENT_EVENTS Possible Successful Generic Phish (set) Aug 25 2017;  
24,9832017/08/29 2024616  ET CURRENT_EVENTS Successful Blockchain Account Phish Aug 19 2016;  
24,9822017/08/29 2024618  ET CURRENT_EVENTS Successful Exmo Cryptocurrency Exchange Phish Aug 28 2017;  
24,9812017/08/29 2024617  ET CURRENT_EVENTS Successful Poloniex Cryptocurrency Exchange Phish Aug 28 2017;  
24,9802017/08/29 2024615  ET MOBILE_MALWARE WireX Botnet DNS Lookup; [1
24,9792017/08/25 2405068  ET CNC Shadowserver Reported CnC Server Port 40669 Group 1; [1,2
24,9782017/08/25 2024609  ET CURRENT_EVENTS Disdain EK Flash Exploit M1 Aug 23 2017;  
24,9772017/08/25 2024611  ET CURRENT_EVENTS Disdain EK Flash Exploit M3 Aug 23 2017;  
24,9762017/08/25 2024605  ET CURRENT_EVENTS Hancitor/Tordal Document Inbound;  
24,9752017/08/25 2024612  ET CURRENT_EVENTS Disdain EK Landing Aug 23 2017;  
24,9742017/08/25 2024610  ET CURRENT_EVENTS Disdain EK Flash Exploit M2 Aug 23 2017;  
24,9732017/08/25 2024608  ET CURRENT_EVENTS Disdain EK Payload Aug 23 2017;  
24,9722017/08/25 2024613  ET TROJAN OSX.Pwnet.A Certificate Observed; [1
24,9712017/08/25 2024606  ET CURRENT_EVENTS Disdain EK URI Struct Aug 23 2017 M1;  
24,9702017/08/25 2024607  ET CURRENT_EVENTS Disdain EK URI Struct Aug 23 2017 M2;  
24,9692017/08/25 2024604  ET CURRENT_EVENTS Hancitor/Tordal Document Request;  
24,9682017/08/23 2024602  ET CURRENT_EVENTS Likely Malicious Windows SCT Download MSXMLHTTP AX M2; [1
24,9672017/08/23 2024601  ET TROJAN Win32/Datper CnC Activity; [1
24,9662017/08/23 2024603  ET TROJAN Spora Ransomware DNS Query - Clone; [1
24,9652017/08/22 2024600  ET CURRENT_EVENTS Possible Maldoc Downloader Aug 18 2017;  
24,9642017/08/19 2024588  ET TROJAN DNS Query for known ShadowPad CnC 1; [1
24,9632017/08/19 2024590  ET TROJAN DNS Query for known ShadowPad CnC 3; [1
24,9622017/08/19 2024592  ET TROJAN DNS Query for known ShadowPad CnC 5; [1
< 41  42  43  44  45  46  47  48  49  50 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.