Daily Rule Update Summary 2022/11/10

Summary:

1 new OPEN, 10 new PRO (1 + 9) SocGholish, Various Android Mobile Malware, Phshing, and Silence Downloader

Please share issues, feedback, and requests at Feedback

Added rules:

Open:

2039766 - ET MALWARE SocGholish CnC Domain in DNS Lookup (rate .coinangel .online) (malware.rules)

Pro:

2852806 - ETPRO MOBILE_MALWARE Android/TrojanDropper.Agent.KIC CnC Domain in DNS Lookup (mobile_malware.rules)
2852807 - ETPRO MOBILE_MALWARE Android/Spy.Agent.CKR CnC Domain in DNS Lookup (mobile_malware.rules)
2852808 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Banbra.o CnC Domain in DNS Lookup (mobile_malware.rules)
2852809 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Banbra.o CnC Domain in DNS Lookup (mobile_malware.rules)
2852810 - ETPRO MOBILE_MALWARE Backdoor.AndroidOS.Agent.ep Activity (mobile_malware.rules)
2852811 - ETPRO MOBILE_MALWARE Android/Spy.Agent.CKR CnC Domain in DNS Lookup (mobile_malware.rules)
2852812 - ETPRO MOBILE_MALWARE Android/TrojanDropper.Agent.KJO CnC Domain in DNS Lookup (mobile_malware.rules)
2852813 - ETPRO MALWARE Silence Downloader Payload Retrieval Attempt M2 (malware.rules)
2852814 - ETPRO PHISHING O365 Credential Phish Landing Page 2022-11-10 (phishing.rules)

Modified active rules:

2826070 - ETPRO MALWARE Silence Downloader Payload Retrieval Attempt M1 (malware.rules)