시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
26,0612018/06/26 2025627  ET INFO [eSentire] Possible Kali Linux Updates;  
26,0602018/06/22 2025620  ET CURRENT_EVENTS American Express Phishing Landing;  
26,0592018/06/22 2025612  ET CURRENT_EVENTS iTunes Connect Phishing Landing;  
26,0582018/06/22 2025621  ET CURRENT_EVENTS HM Revenue Phishing Landing;  
26,0572018/06/22 2025616  ET CURRENT_EVENTS Assurance Maladie Phishing Landing;  
26,0562018/06/22 2025623  ET CURRENT_EVENTS Office 365 Phishing Landing;  
26,0552018/06/22 2025609  ET CURRENT_EVENTS Microsoft Live Phishing Landing;  
26,0542018/06/22 2025619  ET CURRENT_EVENTS US Bank Phishing Landing;  
26,0532018/06/22 2025618  ET CURRENT_EVENTS Capital One Phishing Landing;  
26,0522018/06/22 2025607  ET CURRENT_EVENTS Santander Phishing Landing;  
26,0512018/06/22 2025615  ET CURRENT_EVENTS Paypal Phishing Landing;  
26,0502018/06/22 2025622  ET CURRENT_EVENTS Generic Phishing Kit Landing;  
26,0492018/06/22 2025608  ET CURRENT_EVENTS Santander Phishing Landing;  
26,0482018/06/22 2025611  ET CURRENT_EVENTS Banque et Assurances Phishing Landing;  
26,0472018/06/22 2025617  ET CURRENT_EVENTS Adobe Phishing Landing;  
26,0462018/06/22 2025613  ET CURRENT_EVENTS Facebook Phishing Landing;  
26,0452018/06/22 2025610  ET CURRENT_EVENTS Adobe PDF Online Phishing Landing;  
26,0442018/06/22 2025614  ET CURRENT_EVENTS Microsoft Account Phishing Landing;  
26,0432018/06/22 2025598  ET TROJAN Win32/AutoIt.NU Miner Dropper CnC Checkin;  
26,0422018/06/22 2025601  ET TROJAN Win32/Autophyte.F C2 Domain (www .anlway .com in DNS Lookup); [1
26,0412018/06/22 2025605  ET TROJAN Win32/Autophyte.F C2 Domain (www .apshenyihl .com in DNS Lookup); [1
26,0402018/06/22 2025600  ET TROJAN Win32/Autophyte.F C2 Domain (tpddata .com in TLS SNI); [1
26,0392018/06/22 2025606  ET TROJAN Win32/Autophyte.F C2 Domain (www .apshenyihl .com in TLS SNI); [1
26,0382018/06/22 2025599  ET TROJAN Win32/Autophyte.F C2 Domain (tpddata .com in DNS Lookup); [1
26,0372018/06/22 2025602  ET TROJAN Win32/Autophyte.F C2 Domain (www .anlway .com in TLS SNI); [1
26,0362018/06/22 2025603  ET TROJAN Win32/Autophyte.F C2 Domain (www .ap8898 .com in DNS Lookup); [1
26,0352018/06/22 2025604  ET TROJAN Win32/Autophyte.F C2 Domain (www .ap8898 .com in TLS SNI); [1
26,0342018/06/21 2025596  ET TROJAN BackSwap Trojan C2 Domain Observed (debasuin .nl in DNS Lookup); [1
26,0332018/06/21 2025597  ET TROJAN BackSwap Trojan C2 Domain Observed (debasuin .nl in TLS SNI); [1
26,0322018/06/20 2025595  ET TROJAN [PTsecurity] Donut Ransomware CnC Checkin;  
26,0312018/06/19 2020204  ET DELETED Angler EK XTEA encrypted binary (8);  
26,0302018/06/16 2025594  ET WEB_SERVER Weevely PHP backdoor detected (passthru() function used) M3; [1
26,0292018/06/16 2025593  ET WEB_SERVER Weevely PHP backdoor detected (passthru() function used) M2; [1
26,0282018/06/16 2025591  ET CURRENT_EVENTS Possible Successful Generic Phish (set) 2018-06-14;  
26,0272018/06/16 2025592  ET CURRENT_EVENTS Generic Paypal Phish Kit Landing;  
26,0262018/06/14 2025588  ET CURRENT_EVENTS Possible Successful Generic Phish (set) 2018-06-11;  
26,0252018/06/14 2025589  ET MALWARE WiseCleaner Installed (PUA); [1
26,0242018/06/14 2025590  ET MALWARE Antibody Software Installed (PUA); [1
26,0232018/06/14 2025221  ET TROJAN Malicious Chrome Extension Click Fraud Activity via Websocket; [1,2
26,0222018/06/05 2400034  ET DROP Spamhaus DROP Listed Traffic Inbound group 35; [1
26,0212018/06/01 2025587  ET CURRENT_EVENTS Possible Successful Generic Phish (set) 2018-05-31;  
26,0202018/05/31 2025586  ET TROJAN Aurora/OneKeyLocker Ransomware CnC Checkin;  
26,0192018/05/26 2025585  ET TROJAN Known Sinkhole Response Header INetSim;  
26,0182018/05/25 2025584  ET POLICY HTTPie User-Agent Outbound; [1
26,0172018/05/25 2025583  ET TROJAN [PTsecurity] PS/TrojanDownloader.Agent.NNR XORed Zip payload (key 0x91); [1
26,0162018/05/23 2025582  ET CURRENT_EVENTS Observed Malicious SSL Cert (Coinhive URL Shortener); [1
26,0152018/05/19 2025581  ET TROJAN Win32/Vibem.C CnC Activity;  
26,0142018/05/17 2025580  ET TROJAN Win32/Unk.Stealer CnC Activity;  
26,0132018/05/17 2025577  ET TROJAN InfoBot Sending Machine Details;  
26,0122018/05/17 2025578  ET TROJAN InfoBot Sending LAN Details;  
< 21  22  23  24  25  26  27  28  29  30 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.