FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]

Jane0sint · November 29, 2023, 8:30am

Hi, could you please revise this rule? It match certs on public tasks, making it difficult to detect phishing. Sometimes collectorstealer matches as panda.
Here is submissions by tag:pandabanker

I searched for information on this threat and didn’t find anything earlier than 2 years ago, it may happen that it is no longer relevant.

Jane ﾟ𐦍༘⋆

jtaylor · November 29, 2023, 5:05pm

Taking a look, thanks Jane!

jtaylor · November 29, 2023, 5:14pm

That signature will be disabled in todays release. Thanks for the heads up!

JT

Topic		Replies	Views
Ruleset Update Summary - 2022/12/20 - v10200 Ruleset Updates	0	362	December 20, 2022
Daily Ruleset Update Summary 2022/10/14 Ruleset Updates	0	145	October 14, 2022
Daily Ruleset Update Summary 2022/10/03 Ruleset Updates	0	132	October 3, 2022
Ruleset Update Summary - 2023/04/26 - v10308 Ruleset Updates	3	1241	September 8, 2023
Daily Ruleset Update Summary 2022/09/23 Ruleset Updates	0	189	September 23, 2022

FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]

Related topics