시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
24,2612017/02/18 2023936  ET MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b DNS Lookup; [1
24,2602017/02/18 2023914  ET TROJAN APT28 SEDNIT Variant CnC Beacon 3;  
24,2592017/02/18 2023909  ET TROJAN Miniduke variant C&C activity; [1
24,2582017/02/18 2023910  ET TROJAN CosmicDuke Exfiltrating Data via FTP STOR;  
24,2572017/02/18 2023911  ET TROJAN Miniduke variant FTP upload; [1
24,2562017/02/16 2023904  ET TROJAN Unknown Malicious SSL Cert 3;  
24,2552017/02/16 2023902  ET TROJAN Unknown Malicious SSL Cert 1;  
24,2542017/02/16 2023908  ET TROJAN Unknown Malicious SSL Cert 7;  
24,2532017/02/16 2023905  ET TROJAN Unknown Malicious SSL Cert 4;  
24,2522017/02/16 2023900  ET INFO MP4 in HTTP Flowbit Set M3;  
24,2512017/02/16 2023906  ET TROJAN Unknown Malicious SSL Cert 5;  
24,2502017/02/16 2023907  ET TROJAN Unknown Malicious SSL Cert 6;  
24,2492017/02/16 2023903  ET TROJAN Unknown Malicious SSL Cert 2;  
24,2482017/02/16 2023901  ET TELNET busybox MEMES Hackers - Possible Brute Force Attack; [1
24,2472017/02/15 2023894  ET TROJAN Qadars CnC DNS Lookup (websecuranalityc.com);  
24,2462017/02/15 2023899  ET TROJAN Possible Pegasus Related DNS Lookup (smsmensaje .mx); [1,2
24,2452017/02/15 2023895  ET TROJAN Qadars CnC DNS Lookup (liveskansys.com);  
24,2442017/02/15 2023897  ET EXPLOIT Possible Ticketbleed Server Hello (CVE-2016-9244); [1
24,2432017/02/15 2023896  ET EXPLOIT Possible Ticketbleed Client Hello (CVE-2016-9244); [1
24,2422017/02/15 2023898  ET TROJAN Possible Pegasus Related DNS Lookup (iusacell-movil .com.mx); [1,2
24,2412017/02/15 2023893  ET TROJAN Qadars CnC DNS Lookup (bst2bgxin81a.org);  
24,2402017/02/12 2023892  ET INFO MP4 in HTTP Flowbit Set M2;  
24,2392017/02/11 2023889  ET CURRENT_EVENTS Tech Support Phone Scam Landing Feb 09 2017;  
24,2382017/02/11 2023890  ET CURRENT_EVENTS Successful Banco Itau (BR) Mobile Phish M1 Feb 09 2017;  
24,2372017/02/11 2023891  ET CURRENT_EVENTS Successful Banco Itau (BR) Mobile Phish M2 Feb 09 2017;  
24,2362017/02/11 2023887  ET TROJAN Spora Ransomware DNS Query; [1
24,2352017/02/11 2023888  ET CURRENT_EVENTS Successful Apple Phish Feb 09 2017;  
24,2342017/02/10 2023885  ET TROJAN Banker.Win32.Alreay DNS Lookup (movis-es .ignorelist .com); [1
24,2332017/02/10 2023884  ET TROJAN Banker.Win32.Alreay DNS Lookup (tradeboard .mefound .com); [1
24,2322017/02/10 2023886  ET TROJAN Banker.Win32.Alreay DNS Lookup (exbonus .mrbasic .com); [1
24,2312017/02/09 2023878  ET CURRENT_EVENTS Terror EK Landing M1 Feb 07 2016 M1;  
24,2302017/02/09 2023880  ET CURRENT_EVENTS Possible Successful Craigslist Phishing Domain Feb 07 2017;  
24,2292017/02/09 2023877  ET TROJAN iKittens OSX MacDownloader DNS Lookup (officialswebsites .info); [1
24,2282017/02/09 2023876  ET TROJAN Possible iKittens OSX MacDownloader CNC Beacon; [1
24,2272017/02/09 2023882  ET INFO HTTP Request to a *.top domain; [1,2
24,2262017/02/09 2023881  ET CURRENT_EVENTS Possible Craigslist Phishing Domain Feb 07 2017;  
24,2252017/02/09 2023883  ET DNS Query to a *.top domain - Likely Hostile; [1,2
24,2242017/02/09 2023879  ET CURRENT_EVENTS Terror EK Landing M1 Feb 07 2016 M2;  
24,2232017/02/08 2523432  ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 717; [1
24,2222017/02/08 2523426  ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 714; [1
24,2212017/02/08 2523424  ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 713; [1
24,2202017/02/08 2523430  ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 716; [1
24,2192017/02/08 2523428  ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 715; [1
24,2182017/02/08 2523434  ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 718; [1
24,2172017/02/08 2523422  ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 712; [1
24,2162017/02/08 2023873  ET POLICY DNS Query to Hamas Terrorist Propaganda TV Channel (alqsatv.ps);  
24,2152017/02/08 2023875  ET TROJAN JS/Nemucod requesting EXE payload 2016-02-06;  
24,2142017/02/08 2023874  ET POLICY Hamas Terrorist Propaganda TV Channel (alqsatv.ps); [1
24,2132017/02/08 2023871  ET TROJAN Ursnif Variant Retrieving Payload (x32);  
24,2122017/02/08 2023872  ET TROJAN Ursnif Variant Retrieving Payload (x64);  
< 51  52  53  54  55  56  57  58  59  60 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.