시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
5,9112015/01/20 2007966  ET TROJAN Win32.Inject.zy Checkin Post; [1
5,9102015/01/20 2007965  ET TROJAN Goldun Reporting Install; [1
5,9092015/01/20 2007964  ET DELETED Vipdataend C&C Traffic - Server Status OK; [1
5,9082015/01/20 2007963  ET DELETED Vipdataend C&C Traffic - Status OK; [1
5,9072015/01/20 2007962  ET DELETED Vipdataend C&C Traffic Checkin; [1
5,9062015/01/20 2007961  ET MALWARE Fake Wget User-Agent (wget 3.0) - Likely Hostile; [1
5,9052015/01/20 2007959  ET MALWARE Msconfig.co.kr Related User-Agent (GLOBALx); [1
5,9042015/01/20 2007958  ET MALWARE Msconfig.co.kr Related User Agent (BACKMAN); [1
5,9032015/01/20 2007957  ET TROJAN Banker.ike UDP C&C; [1
5,9022015/01/20 2007956  ET MALWARE Snoopstick.net Related Spyware User-Agent (SnoopStick Updater); [1
5,9012015/01/20 2007955  ET TROJAN Cygo Checkin; [1
5,9002015/01/20 2007954  ET TROJAN Downloader.49651 Online Report; [1
5,8992015/01/20 2007953  ET TROJAN Downloader.49651 Install Report; [1
5,8982015/01/20 2007952  ET TROJAN Downloader.49651 Checkin; [1
5,8972015/01/20 2007951  ET MALWARE Hex Encoded IP HTTP Request - Likely Malware; [1
5,8962015/01/20 2007950  ET TROJAN Possible Infection Report Mail - Indy Mail lib and Nome do Computador in Body; [1
5,8952015/01/20 2007949  ET TROJAN Medbod UDP Phone Home Packet; [1
5,8942015/01/20 2007948  ET MALWARE User-Agent (double dashes); [1
5,8932015/01/20 2007947  ET MALWARE Nguide.co.kr Fake Security Tool User-Agent (nguideup); [1
5,8922015/01/20 2007946  ET MALWARE User-Agent (popup); [1
5,8912015/01/20 2007945  ET MALWARE SysVenFak Fake AV Package Victim Checkin (victim.php); [1
5,8902015/01/20 2007944  ET MALWARE SysVenFak Fake AV Package User-Agent (gh2008); [1
5,8892015/01/20 2007943  ET MALWARE User-Agent (HTTP); [1
5,8882015/01/20 2007942  ET USER_AGENTS Suspicious User Agent (_); [1
5,8872015/01/20 2007940  ET TROJAN Banker.ili HTTP Checkin; [1
5,8862015/01/20 2007939  ET TROJAN Delf Checkin via HTTP (up); [1
5,8852015/01/20 2007938  ET MALWARE Geopia.com Fake Anti-Spyware/AV User-Agent (fian3manager); [1
5,8842015/01/20 2007937  ET EXPLOIT Borland VisiBroker Smart Agent Heap Overflow; [1,2
5,8832015/01/20 2007935  ET MALWARE Geopia.com Fake Anti-Spyware/AV User-Agent (fs3update); [1
5,8822015/01/20 2007934  ET EXPLOIT Zilab Chat and Instant Messaging User Info BoF Vulnerability; [1,2
5,8812015/01/20 2007933  ET EXPLOIT Zilab Chat and Instant Messaging Heap Overflow Vulnerability; [1,2
5,8802015/01/20 2007932  ET ACTIVEX Symantec BackupExec Calendar Control (PVCalendar.ocx) BoF Vulnerability; [1,2
5,8792015/01/20 2007931  ET ACTIVEX ACTIVEX IncrediMail IMMenuShellExt ActiveX Control Buffer Overflow Vulnerability; [1,2
5,8782015/01/20 2007930  ET TROJAN Delf/Hupigon C&C Channel Version Report; [1
5,8772015/01/20 2007929  ET MALWARE User-Agent (User-Agent Mozilla/4.0 (compatible )); [1
5,8762015/01/20 2007928  ET MALWARE Gcashback.co.kr Spyware User-Agent (InvokeAd); [1
5,8752015/01/20 2007927  ET MALWARE Donkeyhote.co.kr Spyware User-Agent (UDonkey); [1
5,8742015/01/20 2007926  ET DELETED Suspicious User-Agent - Possible Trojan Downloader (cv_v5.0.0); [1
5,8732015/01/20 2007925  ET TROJAN Suspicious User-Agent - Possible Trojan Downloader (wnames); [1
5,8722015/01/20 2007924  ET TROJAN Suspicious User-Agent - Possible Trojan Downloader (downloaded); [1
5,8712015/01/20 2007923  ET TROJAN Suspicious User-Agent - Possible Trojan Downloader (Digital); [1
5,8702015/01/20 2007922  ET TROJAN Backdoor.Win32.VB.brg C&C Checkin; [1
5,8692015/01/20 2007921  ET MALWARE User-Agent (Explorer); [1
5,8682015/01/20 2007920  ET TROJAN Dropper-497 (Yumato) Status Reply from server; [1
5,8672015/01/20 2007919  ET TROJAN Dropper-497 Yumato Reply from server; [1
5,8662015/01/20 2007918  ET TROJAN Dropper-497 (Yumato) System Stats Report; [1
5,8652015/01/20 2007917  ET TROJAN Dropper-497 (Yumato) Initial Checkin; [1
5,8642015/01/20 2007914  ET WORM SDBot HTTP Checkin; [1
5,8632015/01/20 2007913  ET TROJAN Dialer.MC(vf) HTTP Request - Checkin; [1
5,8622015/01/20 2007912  ET TROJAN Suspicious User-Agent - Possible Trojan-Dropper.Win32.Agent.eut (Yhrbg); [1
< 421  422  423  424  425  426  427  428  429  430 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.