Ruleset Update Summary - 2023/04/12 - v10296

rulesbot · April 12, 2023, 9:11pm

Summary:

2 new OPEN, 9 new PRO (2 + 7)

Thanks @suyog41

2044925 - ET MALWARE Win32/Agartha Stealer Activity via Telegram (Response) (malware.rules)
2044926 - ET ADWARE_PUP PUP/SpamFighter CnC Request (adware_pup.rules)

2854158 - ETPRO PHISHING TA4900 Credential Phish Landing Page M1 2023-04-12 (phishing.rules)
2854159 - ETPRO PHISHING TA4900 Credential Phish Landing Page M2 2023-04-12 (phishing.rules)
2854160 - ETPRO PHISHING Successful Generic Credential Phish 2023-04-12 (phishing.rules)
2854161 - ETPRO PHISHING Successful TA4900 Credential Phish 2023-04-12 (phishing.rules)
2854162 - ETPRO MALWARE Possible IcedID Download Request (malware.rules)
2854163 - ETPRO MALWARE IcedID Keitaro .zip Download (malware.rules)
2854164 - ETPRO WEB_CLIENT Evil Keitaro Set-Cookie Inbound to IcedID (34ab8) (web_client.rules)

2000419 - ET POLICY PE EXE or DLL Windows file download Non-HTTP (policy.rules)
2821014 - ETPRO HUNTING suspicious .CAB containing single executable file inbound (observed in maldoc campaign) (hunting.rules)

Topic	Replies	Views
Ruleset Update Summary - 2024/02/23 - v10539 Ruleset Updates	238	February 23, 2024
Ruleset Update Summary - 2023/05/05 - v10317 Ruleset Updates	376	May 5, 2023
Ruleset Update Summary - 2023/06/20 - v10354 Ruleset Updates	243	June 20, 2023
Ruleset Update Summary - 2024/10/18 - v10723 Ruleset Updates	99	October 18, 2024
Daily Ruleset Update Summary 2022/09/14 Ruleset Updates	97	September 14, 2022