Ruleset Update Summary - 2023/07/13 - v10371

Ruleset Updates
1

Summary:

2 new OPEN, 5 new PRO (2 + 3)

Added rules:

Open:

  • 2046818 - ET INFO URL Shortening Service Domain in DNS Lookup (zws .im) (info.rules)
  • 2046819 - ET INFO Observed URL Shortening Service Domain (zws .im in TLS SNI) (info.rules)

Pro:

  • 2854801 - ETPRO MALWARE CustomerLoader Activity (GET) (malware.rules)
  • 2854802 - ETPRO MALWARE Suspected Rhadamanthys Related SSL Cert (malware.rules)
  • 2854823 - ETPRO MALWARE Agent Tesla Discord Exfil M2 (malware.rules)