FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]

Hi, could you please revise this rule? It match certs on public tasks, making it difficult to detect phishing. Sometimes collectorstealer matches as panda.
Here is submissions by tag:pandabanker :arrow_heading_down:

I searched for information on this threat and didn’t find anything earlier than 2 years ago, it may happen that it is no longer relevant.

Jane ゚𐦍༘⋆

1 Like

Taking a look, thanks Jane!

1 Like

That signature will be disabled in todays release. Thanks for the heads up!