Latest Rule Signatures topics

Topic	Replies	Views	Activity
DarkCrystal RAT	13	839	January 2, 2024
Independant System Verification and Validation of Malware etopen	2	181	December 28, 2023
Lumma Stealer Configuration	11	895	December 28, 2023
PureLogs Stealer	12	816	December 28, 2023
StealC Stealer	11	783	December 28, 2023
DarkGate	4	453	December 28, 2023
Gh0stRat	3	582	December 28, 2023
LgoogLoader, PikaBot, RedLine rules	7	622	December 28, 2023
Inconsistency between the rules 2049660 & 2049661 and the family	1	210	December 19, 2023
SID 2012870 - Outbound Request contains pw snort3 , false-positives	2	292	December 19, 2023
Question on 2028867	5	200	December 13, 2023
FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]	2	228	November 29, 2023
MALWARE - classtype:misc-activity	1	234	November 27, 2023
Is bloodhound signature included in the latest weekly update	3	180	November 23, 2023
SIG: W32/LitterDrifter.Loader Gamaredon USB Worm	2	187	November 21, 2023
New Sig: ET TROJAN W32/Kazuar.Backdoor Turla APT Hardcoded Cookie	1	359	November 20, 2023
False positive on Android Trojan suricata , false-positives	1	301	October 19, 2023
2048118 is a little loose	3	214	October 12, 2023
Addressing an FP: 2016950 - ET MALWARE Possible Win32/Hupigon ip.txt with a Non-Mozilla UA etopen , false-positives , rule-analysis	0	224	October 2, 2023
Eternity Clipper	4	400	September 27, 2023
NStealer v2	3	478	September 25, 2023
Lumma Stealer Updates	2	524	September 15, 2023
Echida Botnet	3	384	September 11, 2023
JSCAPE MFT Binary Management Java Deserialization - CVE-2023-4528	0	306	September 8, 2023
SIG: ET MOBILE_MALWARE Android/InfamousChisel.InfoStealer APT28/SANDWORM Data Exfiltration	2	348	September 1, 2023
TheBoxClipper	2	454	August 30, 2023
RootTeam Stealer and overlap issues on Bandit Stealer rule detection	7	702	August 29, 2023
Mekotio	2	368	August 24, 2023
Parallax Rat	3	318	August 14, 2023
SIG: CloudFlare Tunnel DNS Query For argotunnel.com	2	222	August 14, 2023

DarkCrystal RAT

13

839

January 2, 2024

Independant System Verification and Validation of Malware

etopen

2

181

December 28, 2023

Lumma Stealer Configuration

11

895

December 28, 2023

PureLogs Stealer

12

816

December 28, 2023

StealC Stealer

11

783

December 28, 2023

DarkGate

4

453

December 28, 2023

Gh0stRat

3

582

December 28, 2023

LgoogLoader, PikaBot, RedLine rules

7

622

December 28, 2023

Inconsistency between the rules 2049660 & 2049661 and the family

1

210

December 19, 2023

SID 2012870 - Outbound Request contains pw

snort3 , false-positives

2

292

December 19, 2023

Question on 2028867

5

200

December 13, 2023

FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]

2

228

November 29, 2023

MALWARE - classtype:misc-activity

1

234

November 27, 2023

Is bloodhound signature included in the latest weekly update

3

180

November 23, 2023

SIG: W32/LitterDrifter.Loader Gamaredon USB Worm

2

187

November 21, 2023

New Sig: ET TROJAN W32/Kazuar.Backdoor Turla APT Hardcoded Cookie

1

359

November 20, 2023

False positive on Android Trojan

suricata , false-positives

1

301

October 19, 2023

2048118 is a little loose

3

214

October 12, 2023

Addressing an FP: 2016950 - ET MALWARE Possible Win32/Hupigon ip.txt with a Non-Mozilla UA

etopen , false-positives , rule-analysis

0

224

October 2, 2023

Eternity Clipper

4

400

September 27, 2023

NStealer v2

3

478

September 25, 2023

Lumma Stealer Updates

2

524

September 15, 2023

Echida Botnet

3

384

September 11, 2023

JSCAPE MFT Binary Management Java Deserialization - CVE-2023-4528

0

306

September 8, 2023

SIG: ET MOBILE_MALWARE Android/InfamousChisel.InfoStealer APT28/SANDWORM Data Exfiltration

2

348

September 1, 2023

TheBoxClipper

2

454

August 30, 2023

RootTeam Stealer and overlap issues on Bandit Stealer rule detection

7

702

August 29, 2023

Mekotio

2

368

August 24, 2023

Parallax Rat

3

318

August 14, 2023

SIG: CloudFlare Tunnel DNS Query For argotunnel.com

2

222

August 14, 2023