Ruleset Update Summary - 2022/12/29 - v10207

Summary:

2 new OPEN, 4 new PRO (2 + 2)

Thanks @TrendMicro

The Emerging Threats mailing list is migrating to Discourse. Please visit us at https://community.emergingthreats.net

We will announce the mailing list retirement date in the near future.

There will be no signature release on Monday, January 2, 2023 due to New Year holiday observance.


Added rules:

Open:

  • 2043100 - ET MALWARE Compromised Chat Application Related User-Agent (Chrorne) (malware.rules)
  • 2043101 - ET GAMES Multiple Game Cheat Application Related Activity (games.rules)

Pro:

  • 2852987 - ETPRO MALWARE PurpleFox Backdoor/Rootkit Checkin M3 (malware.rules)
  • 2852988 - ETPRO MALWARE MSIL/PSW.Agent.RXP Exfil (malware.rules)

Modified active rules:

  • 2845995 - ETPRO MALWARE Win32/Datper Variant CnC Host Checkin (malware.rules)