시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
24,6612017/05/18 2024301  ET TROJAN W32/WannaCry.Ransomware Killswitch Domain HTTP Request 4; [1
24,6602017/05/18 2024302  ET TROJAN W32/WannaCry.Ransomware Killswitch Domain HTTP Request 5; [1
24,6592017/05/18 2024299  ET TROJAN W32/WannaCry.Ransomware Killswitch Domain HTTP Request 2; [1
24,6582017/05/18 2024303  ET WEB_CLIENT Malicious SCF File Inbound; [1
24,6572017/05/18 2024300  ET TROJAN W32/WannaCry.Ransomware Killswitch Domain HTTP Request 3; [1
24,6562017/05/18 2024311  ET TROJAN Loki Bot Cryptocurrency Wallet Exfiltration Detected;  
24,6552017/05/18 2024312  ET TROJAN Loki Bot Application/Credential Data Exfiltration Detected M1;  
24,6542017/05/18 2024310  ET EXPLOIT NB8-04 - Possible Unauthed RCE via whitelist bypass; [1
24,6532017/05/18 2024296  ET TROJAN Possible WannaCry DNS Lookup; [1
24,6522017/05/18 2024295  ET TROJAN Possible WannaCry DNS Lookup; [1
24,6512017/05/18 2024309  ET EXPLOIT NB8-02 - Possible Unauthed RCE via nbbsdtar; [1
24,6502017/05/18 2024307  ET TROJAN MWI Maldoc Posting Host Data;  
24,6492017/05/18 2024305  ET CURRENT_EVENTS Multibrowser Resource Exhaustion observed in Tech Support Scam; [1
24,6482017/05/18 2024304  ET TROJAN MSIL/May Ransomware SSL Cert Observed;  
24,6472017/05/18 2024298  ET TROJAN W32/WannaCry.Ransomware Killswitch Domain HTTP Request 1; [1
24,6462017/05/16 2024293  ET TROJAN Possible WannaCry DNS Lookup; [1
24,6452017/05/16 2024294  ET TROJAN Possible WannaCry DNS Lookup; [1
24,6442017/05/13 2024291  ET TROJAN Possible WannaCry DNS Lookup; [1
24,6432017/05/13 2024292  ET INFO Bitcoin QR Code Generated via Btcfrog.com;  
24,6422017/05/12 2024289  ET TROJAN DNS Query to Jaff Domain (fkksjobnn43 . org); [1
24,6412017/05/12 2024290  ET TROJAN Jaff Ransomware Checkin M1; [1
24,6402017/05/12 2024288  ET TROJAN Jaff Ransomware Checkin; [1
24,6392017/05/11 2024287  ET EXPLOIT Intel AMT Login Attempt Detected (CVE 2017-5689); [1,2
24,6382017/05/10 2024284  ET TROJAN OSX/Proton.B DNS Lookup; [1
24,6372017/05/10 2024285  ET TROJAN OSX/Proton.B Domain in SNI;  
24,6362017/05/10 2024283  ET INFO Miniproxy Cloned Page - Possible Phishing Landing; [1
24,6352017/05/10 2024286  ET TROJAN Turla SHIRIME DNS Lookup; [1
24,6342017/05/09 2024282  ET EXPLOIT Intel AMT Login Attempt Detected (CVE 2017-5689); [1,2
24,6332017/05/09 2024281  ET TROJAN Known Hostile Domain ant.trenz .pl Lookup;  
24,6322017/05/09 2024280  ET TROJAN MSIL/NewHT Ransomware CnC Checkin;  
24,6312017/05/06 2024277  ET WEB_SPECIFIC_APPS Wordpress Host Header Injection (CVE-2016-10033) M1; [1
24,6302017/05/06 2024278  ET WEB_SPECIFIC_APPS Wordpress Host Header Injection (CVE-2016-10033) M2; [1
24,6292017/05/06 2024279  ET WEB_SPECIFIC_APPS Wordpress Host Header Injection (CVE-2016-10033) M3; [1
24,6282017/05/05 2024271  ET TROJAN Turla Snake OSX DNS Lookup (car-service .effers.com); [1
24,6272017/05/05 2024269  ET CURRENT_EVENTS Successful Google App Oauth Phish M4 Mar 3 2017;  
24,6262017/05/05 2024266  ET CURRENT_EVENTS Successful Google App Oauth Phish M1 Mar 3 2017;  
24,6252017/05/05 2024275  ET TROJAN W32/Emotet CnC Beacon 2; [1,2,3
24,6242017/05/05 2024272  ET TROJAN W32.Geodo/Emotet Checkin;  
24,6232017/05/05 2024276  ET TROJAN MSIL/OzazaLocker Ransomware CnC Checkin;  
24,6222017/05/05 2024273  ET TROJAN SuperCMD CnC Beacon; [1
24,6212017/05/05 2024270  ET TROJAN Kazuar CnC Beacon; [1
24,6202017/05/05 2024274  ET TROJAN W32/Emotet CnC Beacon 1; [1,2,3
24,6192017/05/05 2024268  ET CURRENT_EVENTS Successful Google App Oauth Phish M3 Mar 3 2017;  
24,6182017/05/05 2024233  ET TROJAN Unknown Possibly Ransomware (Dropped by RIG) CnC Beacon;  
24,6172017/05/05 2024267  ET CURRENT_EVENTS Successful Google App Oauth Phish M2 Mar 3 2017;  
24,6162017/05/02 2024265  ET WEB_SERVER Jorgee Scan; [1
24,6152017/04/29 2024259  ET MALWARE Loadmoney Checkin 2; [1
24,6142017/04/29 2024263  ET TROJAN DeepEnd Research Ransomware CrypMIC Payment Onion Domain; [1
24,6132017/04/29 2024262  ET MALWARE Loadmoney Checkin 4; [1
24,6122017/04/29 2024258  ET MALWARE Loadmoney Checkin 1; [1
< 41  42  43  44  45  46  47  48  49  50 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.