Ruleset Update Summary - 2023/03/31 - v10282

rulesbot · March 31, 2023, 8:54pm

Summary:

10 new OPEN, 12 new PRO (10 + 2)

Thanks @patrickwardle, @Volexity, @objective_see, @petrovic082

The Emerging Threats mailing list is migrating to Discourse. Please visit us at https://community.emergingthreats.net

The mailing list is being retired on April 3, 2023.

2044848 - ET MALWARE Observed 3CX Supply Chain Attack Cookie (malware.rules)
2044849 - ET MALWARE Observed 3CX Supply Chain Attack Cookie M2 (malware.rules)
2044850 - ET HUNTING Terse DoH Style Query (GET) (hunting.rules)
2044851 - ET MALWARE APT43 GOLDDRAGON Related Activity (GET) (malware.rules)
2044852 - ET MALWARE Crashedtech Loader Domain (crashedff .xyz) in DNS Lookup (malware.rules)
2044853 - ET MALWARE Crashedtech Loader CnC Checkin (malware.rules)
2044854 - ET PHISHING Successful Office365 Credential Phish 2023-03-31 (phishing.rules)
2044855 - ET MALWARE DorkBot.Downloader CnC Beacon M2 (malware.rules)
2044856 - ET MALWARE SocGholish Domain in DNS Lookup (agreement .panworldtradersllc .com) (malware.rules)
2044857 - ET MALWARE Observed 3CX Supply Chain Attack User-Agent (malware.rules)

2854068 - ETPRO MALWARE LNK/TrojanDownloader.Agent.GOZ Payload Request (GET) (malware.rules)
2854069 - ETPRO PHISHING Successful Generic Credential Phish 2023-03-30 (phishing.rules)

Topic		Replies	Views
Ruleset Update Summary - 2022/11/17 - v10175 Ruleset Updates	0	418	November 17, 2022
Ruleset Update Summary - 2023/02/27 - v10254 Ruleset Updates	0	219	February 27, 2023
Ruleset Update Summary - 2023/03/10 - v10265 Ruleset Updates	1	208	March 10, 2023
Ruleset Update Summary - 2022/12/16 - v10198 Ruleset Updates	0	215	December 16, 2022
Ruleset Update Summary - 2022/12/22 - v10203 Ruleset Updates	0	197	December 22, 2022