Latest Rule Signatures topics

Topic	Replies	Views	Activity
About the Rule Signatures category	0	721	September 12, 2022
ET Malware - Socks5Systemz	7	162	December 2, 2023
FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]	2	52	November 29, 2023
RisePro TCP v.0.1	6	471	November 27, 2023
MALWARE - classtype:misc-activity	1	67	November 27, 2023
Is bloodhound signature included in the latest weekly update	3	60	November 23, 2023
Meta vs Redline Stealer	2	79	November 22, 2023
SIG: W32/LitterDrifter.Loader Gamaredon USB Worm	2	66	November 21, 2023
New Sig: ET TROJAN W32/Kazuar.Backdoor Turla APT Hardcoded Cookie	1	58	November 20, 2023
Vidar Stealer	3	197	November 17, 2023
PureLogs Stealer	10	327	October 30, 2023
False positive on Android Trojan suricata , false-positives	1	118	October 19, 2023
DarkGate	2	248	October 13, 2023
2048118 is a little loose	3	115	October 12, 2023
Gh0stRat	1	285	October 6, 2023
Addressing an FP: 2016950 - ET MALWARE Possible Win32/Hupigon ip.txt with a Non-Mozilla UA etopen , false-positives , rule-analysis	0	117	October 2, 2023
Eternity Clipper	4	258	September 27, 2023
NStealer v2	3	229	September 25, 2023
DarkCrystal RAT	11	357	September 21, 2023
Lumma Stealer Updates	2	292	September 15, 2023
Lumma Stealer Configuration	6	447	September 15, 2023
Echida Botnet	3	238	September 11, 2023
JSCAPE MFT Binary Management Java Deserialization - CVE-2023-4528	0	128	September 8, 2023
SIG: ET MOBILE_MALWARE Android/InfamousChisel.InfoStealer APT28/SANDWORM Data Exfiltration	2	217	September 1, 2023
TheBoxClipper	2	294	August 30, 2023
RootTeam Stealer and overlap issues on Bandit Stealer rule detection	7	424	August 29, 2023
Mekotio	2	227	August 24, 2023
Parallax Rat	3	196	August 14, 2023
SIG: CloudFlare Tunnel DNS Query For argotunnel.com	2	130	August 14, 2023
Poverty Stealer	6	461	August 12, 2023

About the Rule Signatures category

0

721

September 12, 2022

ET Malware - Socks5Systemz

7

162

December 2, 2023

FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]

2

52

November 29, 2023

RisePro TCP v.0.1

6

471

November 27, 2023

MALWARE - classtype:misc-activity

1

67

November 27, 2023

Is bloodhound signature included in the latest weekly update

3

60

November 23, 2023

Meta vs Redline Stealer

2

79

November 22, 2023

SIG: W32/LitterDrifter.Loader Gamaredon USB Worm

2

66

November 21, 2023

New Sig: ET TROJAN W32/Kazuar.Backdoor Turla APT Hardcoded Cookie

1

58

November 20, 2023

Vidar Stealer

3

197

November 17, 2023

PureLogs Stealer

10

327

October 30, 2023

False positive on Android Trojan

suricata , false-positives

1

118

October 19, 2023

DarkGate

2

248

October 13, 2023

2048118 is a little loose

3

115

October 12, 2023

Gh0stRat

1

285

October 6, 2023

Addressing an FP: 2016950 - ET MALWARE Possible Win32/Hupigon ip.txt with a Non-Mozilla UA

etopen , false-positives , rule-analysis

0

117

October 2, 2023

Eternity Clipper

4

258

September 27, 2023

NStealer v2

3

229

September 25, 2023

DarkCrystal RAT

11

357

September 21, 2023

Lumma Stealer Updates

2

292

September 15, 2023

Lumma Stealer Configuration

6

447

September 15, 2023

Echida Botnet

3

238

September 11, 2023

JSCAPE MFT Binary Management Java Deserialization - CVE-2023-4528

0

128

September 8, 2023

SIG: ET MOBILE_MALWARE Android/InfamousChisel.InfoStealer APT28/SANDWORM Data Exfiltration

2

217

September 1, 2023

TheBoxClipper

2

294

August 30, 2023

RootTeam Stealer and overlap issues on Bandit Stealer rule detection

7

424

August 29, 2023

Mekotio

2

227

August 24, 2023

Parallax Rat

3

196

August 14, 2023

SIG: CloudFlare Tunnel DNS Query For argotunnel.com

2

130

August 14, 2023

Poverty Stealer

6

461

August 12, 2023