시그니처 리스트, Signature List
번호날짜ID시그니처 (Total Ruleset: 27,111개)
6,1612015/01/20 2008274  ET TROJAN Bifrose Response from Controller; [1
6,1602015/01/20 2008273  ET TROJAN Bifrose Connect to Controller; [1
6,1592015/01/20 2008271  ET TROJAN DMSpammer HTTP Post Checkin; [1
6,1582015/01/20 2008270  ET DELETED Emogen Infection Checkin CnC Keepalive; [1
6,1572015/01/20 2008269  ET DELETED Emogen Infection Checkin Initial Packet; [1
6,1562015/01/20 2008268  ET DELETED Delf Checkin via HTTP (8); [1
6,1552015/01/20 2008267  ET TROJAN Banker.JU Related HTTP Post-infection Checkin; [1
6,1542015/01/20 2008266  ET TROJAN Suspicious User-Agent (Zilla); [1
6,1532015/01/20 2008264  ET TROJAN Suspicious User-Agent (opera); [1
6,1522015/01/20 2008263  ET TROJAN DNS Changer HTTP Post Checkin; [1
6,1512015/01/20 2008262  ET TROJAN Suspicious User-Agent (WebForm 1); [1
6,1502015/01/20 2008261  ET TROJAN Common Spambot HTTP Checkin; [1
6,1492015/01/20 2008260  ET TROJAN Pointpack.kr Related Trojan Checkin; [1
6,1482015/01/20 2008259  ET TROJAN Suspicious User-Agent (AutoHotkey); [1
6,1472015/01/20 2008258  ET TROJAN Hupigon CnC Communication (variant bysj); [1
6,1462015/01/20 2008257  ET TROJAN Suspicious User-Agent (Nimo Software HTTP Retriever 1.0); [1
6,1452015/01/20 2008256  ET TROJAN Banload HTTP Checkin Detected (envia.php); [1
6,1442015/01/20 2008255  ET TROJAN Suspicious User-Agent (IE); [1
6,1432015/01/20 2008254  ET DELETED Vipdataend/Ceckno C&C Traffic - Checkin; [1
6,1422015/01/20 2008253  ET TROJAN Suspicious User-Agent (chek); [1
6,1412015/01/20 2008251  ET DELETED Winspywareprotect.com Fake AV/Anti-Spyware Secondary Checkin; [1
6,1402015/01/20 2008250  ET TROJAN Winspywareprotect.com Fake AV/Anti-Spyware Install Checkin; [1
6,1392015/01/20 2008249  ET TROJAN Knockbot Proxy Checkin; [1
6,1382015/01/20 2008248  ET TROJAN Cashout Proxy Bot reg_DST; [1
6,1372015/01/20 2008247  ET DELETED Juicopotomous ack to Controller; [1
6,1362015/01/20 2008246  ET DELETED Juicopotomous ack from Controller; [1
6,1352015/01/20 2008245  ET DELETED Juicopotomous to Controller; [1
6,1342015/01/20 2008244  ET TROJAN ProxyBot Phone Home Traffic; [1
6,1332015/01/20 2008243  ET TROJAN my247eshop.com User-Agent; [1
6,1322015/01/20 2008242  ET POLICY Hotmail Access Full Mode; [1
6,1312015/01/20 2008241  ET DELETED Hotmail Compose Message Submit; [1
6,1302015/01/20 2008240  ET POLICY Hotmail Compose Message Access; [1
6,1292015/01/20 2008239  ET POLICY Hotmail Message Access; [1
6,1282015/01/20 2008238  ET POLICY Hotmail Inbox Access; [1
6,1272015/01/20 2008237  ET TROJAN Pass Stealer FTP Upload; [1
6,1262015/01/20 2008236  ET TROJAN Fake.Googlebar or Softcash.org Related Post-Infection Checkin; [1
6,1252015/01/20 2008233  ET TROJAN Common Downloader Install Report URL (farfly checkin); [1
6,1242015/01/20 2008232  ET TROJAN Generic Spambot (often Tibs) Post-Infection Checkin (justcount.net likely); [1
6,1232015/01/20 2008231  ET TROJAN Suspicious User-Agent (Mozilla 1.02.45 biz); [1
6,1222015/01/20 2008230  ET SCAN Behavioral Unusually fast outbound Telnet Connections, Potential Scan or Brute Force; [1,2
6,1212015/01/20 2008228  ET SCAN Suspicious User-Agent inbound (bot); [1
6,1202015/01/20 2008226  ET ACTIVEX Microsoft Works 7 WkImgSrv.dll ActiveX Remote BOF Exploit; [1,2,3
6,1192015/01/20 2008225  ET ACTIVEX Possible Universal HTTP Image/File Upload ActiveX Remote File Deletion Exploit; [1,2
6,1182015/01/20 2008224  ET DELETED Vipdataend C&C Traffic - Checkin (XYLL); [1
6,1172015/01/20 2008223  ET DELETED Vipdataend C&C Traffic - Checkin (FYWL); [1
6,1162015/01/20 2008222  ET TROJAN Asprox phishing email detected; [1,2
6,1152015/01/20 2008221  ET TROJAN Asprox-style Message ID; [1,2
6,1142015/01/20 2008220  ET TROJAN Looked.P/Gamania/Delf #109/! Style CnC Checkin Response from Server; [1
6,1132015/01/20 2008219  ET DELETED Looked.P/Gamania/Delf #108/! Style CnC Checkin; [1
6,1122015/01/20 2008218  ET TROJAN Optix Pro Trojan/Keylogger Reporting Installation via HTTP-Email Post; [1,2
< 411  412  413  414  415  416  417  418  419  420 >
GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.
Copyright ⓒ 2010 . All Rights Reserved.