Ruleset Update Summary - 2024/03/13 - v10551

Summary:

7 new OPEN, 7 new PRO (7 + 0)

Thanks @Gi7w0rm


Added rules:

Open:

  • 2051636 - ET MALWARE Lumma Stealer Related CnC Domain in DNS Lookup (edurestunningcrackyow .funq) (malware.rules)
  • 2051637 - ET MALWARE Observed Lumma Stealer Related Domain (edurestunningcrackyow .funq in TLS SNI) (malware.rules)
  • 2051638 - ET MALWARE TA416 Related PUBLOAD Variant Checkin Activity M2 (malware.rules)
  • 2051639 - ET MALWARE DaoDao Cloud Loader C2 Response (malware.rules)
  • 2051640 - ET MALWARE Win32/PackedFlyStudio.AA CnC Activity (GET) (malware.rules)
  • 2051641 - ET MALWARE Rust HackTool CnC Activity (Outbound) (malware.rules)
  • 2051642 - ET MALWARE Rust HackTool CnC Activity (Inbound) (malware.rules)

Modified inactive rules:

  • 2001463 - ET ADWARE_PUP Xpire.info Multiple Spyware Installs (2) (adware_pup.rules)
  • 2001570 - ET ADWARE_PUP Spyware Stormer Reporting Data (adware_pup.rules)
  • 2002896 - ET EXPLOIT Symantec Scan Engine Request Password Hash (exploit.rules)
  • 2007820 - ET ADWARE_PUP Rabio Spyware/Adware Initial Registration (adware_pup.rules)
  • 2007870 - ET ADWARE_PUP Vombanetworks.com Spyware Installer Checkin (adware_pup.rules)
  • 2008442 - ET MALWARE Rootkit.Win32.Clbd.cz Checkin (malware.rules)
  • 2008443 - ET MALWARE Coreflood/AFcore Trojan Infection (2) (malware.rules)
  • 2008757 - ET ADWARE_PUP Zenosearch Malware Checkin HTTP POST (adware_pup.rules)
  • 2008984 - ET MALWARE Trojan-GameThief.Win32.OnLineGames infection report (malware.rules)
  • 2009533 - ET MALWARE Keylogger Pro Update Check (malware.rules)
  • 2009710 - ET WEB_SPECIFIC_APPS phpMyAdmin Setup Code Injection (system) (web_specific_apps.rules)
  • 2012279 - ET MALWARE SpyEye HTTP Library Checkin (malware.rules)
  • 2013289 - ET POLICY MOBILE Apple device leaking UDID from SpringBoard (policy.rules)
  • 2014102 - ET POLICY FACEBOOK user id in http_client_body, lookup with Redirecting... (policy.rules)
  • 2014428 - ET MALWARE SpyEye Checkin version 1.3.25 or later 3 (malware.rules)
  • 2014864 - ET MALWARE W32.Gimemo/Aldibot CnC POST (malware.rules)
  • 2015753 - ET MALWARE Pincav.cjvb Checkin (malware.rules)
  • 2015974 - ET EXPLOIT_KIT Sibhost Status Check (exploit_kit.rules)
  • 2016061 - ET WEB_SPECIFIC_APPS Possible WordpressPingbackPortScanner detected (web_specific_apps.rules)
  • 2016087 - ET MALWARE TROJAN Unk_Banker - Check In (malware.rules)
  • 2017300 - ET EXPLOIT_KIT Rawin -TDS - POST w/Java Version (exploit_kit.rules)
  • 2018149 - ET ADWARE_PUP W32/InstallMonetizer.Adware Beacon 2 (adware_pup.rules)
  • 2018177 - ET EXPLOIT_KIT OnClick Anti-BOT TDS POST Feb 25 2014 (exploit_kit.rules)
  • 2018263 - ET CURRENT_EVENTS Dell Kace backdoor (current_events.rules)
  • 2019004 - ET EXPLOIT_KIT FlashPack EK Exploit Flash Post Aug 25 2014 (exploit_kit.rules)
  • 2019095 - ET CURRENT_EVENTS ScanBox Framework used in WateringHole Attacks (POST) PluginData (current_events.rules)
  • 2019098 - ET EXPLOIT_KIT Archie EK Sending Plugin-Detect Data (exploit_kit.rules)
  • 2019134 - ET WEB_CLIENT Flashpack Redirect Method 2 (web_client.rules)
  • 2019321 - ET WEB_CLIENT Upatre redirector 29 Sept 2014 - POST (web_client.rules)
  • 2019386 - ET CURRENT_EVENTS Possible TWiki Apache config file upload attempt (current_events.rules)
  • 2019594 - ET EXPLOIT_KIT FlashPack EK Plugin-Detect Post (exploit_kit.rules)
  • 2022964 - ET EXPLOIT_KIT Evil Redirector Leading to EK Jul 13 2016 2 (exploit_kit.rules)
  • 2023042 - ET PHISHING Successful Apple Suspended Account Phish M1 Aug 09 2016 (phishing.rules)
  • 2023063 - ET PHISHING Successful Credit Agricole Phish Aug 15 2016 M1 (phishing.rules)
  • 2023064 - ET PHISHING Successful Credit Agricole Phish Aug 15 2016 M2 (phishing.rules)
  • 2023072 - ET PHISHING Successful Netflix Phish Aug 17 2016 (phishing.rules)
  • 2023487 - ET PHISHING Successful Tesco Bank Phish M1 Nov 08 2016 (phishing.rules)
  • 2023488 - ET PHISHING Successful Tesco Bank Phish M2 Nov 08 2016 (phishing.rules)
  • 2023888 - ET PHISHING Successful Apple Phish Feb 09 2017 (phishing.rules)
  • 2023890 - ET PHISHING Successful Banco Itau (BR) Mobile Phish M1 Feb 09 2017 (phishing.rules)
  • 2023891 - ET PHISHING Successful Banco Itau (BR) Mobile Phish M2 Feb 09 2017 (phishing.rules)
  • 2024001 - ET PHISHING Successful California Bank & Trust Phish Feb 17 2017 (phishing.rules)
  • 2024046 - ET PHISHING Successful Paypal Phish Mar 13 2017 (phishing.rules)
  • 2024167 - ET PHISHING Successful Mail.ru Phish Apr 04 2017 (phishing.rules)
  • 2024186 - ET PHISHING Successful Santander Phish M1 Apr 07 2017 (phishing.rules)
  • 2024187 - ET PHISHING Successful Santander Phish M2 Apr 07 2017 (phishing.rules)
  • 2024188 - ET PHISHING Successful Santander Phish M3 Apr 07 2017 (phishing.rules)
  • 2024231 - ET PHISHING Successful iCloud Phish Apr 20 2017 (phishing.rules)
  • 2024232 - ET PHISHING Successful Alitalia Airline Phish Apr 20 2017 (phishing.rules)
  • 2024327 - ET PHISHING Successful Scotiabank Phish M2 May 24 2017 (phishing.rules)
  • 2024532 - ET PHISHING Successful Mail.ru Phish Aug 10 2017 (phishing.rules)
  • 2024546 - ET PHISHING Successful Paypal Phish M3 Aug 14 2017 (phishing.rules)
  • 2024801 - ET PHISHING Successful Santander Phish M3 Oct 04 2017 (phishing.rules)
  • 2026038 - ET PHISHING Successful Generic Phish (set) 2018-08-27 (phishing.rules)
  • 2026465 - ET PHISHING Successful Generic Phish (set) 2018-10-10 (phishing.rules)
  • 2027956 - ET PHISHING Successful Gmail Phish (set) 2016-09-12 (phishing.rules)
  • 2031561 - ET PHISHING Terse POST to Wordpress Folder - Probable Successful Phishing M5 (phishing.rules)
  • 2101437 - GPL POLICY Windows Media download (policy.rules)
  • 2800949 - ETPRO ADWARE_PUP RogueSoftware.Win32.Winwebsec Activity (adware_pup.rules)
  • 2801224 - ETPRO WORM Worm.Win32.Soglueda.A Checkin (worm.rules)
  • 2801341 - ETPRO MALWARE Trojan.Win32.PassStealer.ird Checkin (malware.rules)
  • 2801366 - ETPRO ADWARE_PUP Trojan.Win32.Biter.g Checkin (adware_pup.rules)
  • 2802056 - ETPRO MALWARE backdoor.Win32.Knockwxp.A Checkin (malware.rules)
  • 2802057 - ETPRO MALWARE Backdoor.Win32.Knockwxp.A Checkin (malware.rules)
  • 2802121 - ETPRO WORM Worm.Win32.Cospet.A Checkin (worm.rules)
  • 2803647 - ETPRO EXPLOIT Citrix XenApp and XenDesktop XML Service Interface Stack Buffer Overflow (exploit.rules)
  • 2803814 - ETPRO MALWARE ZEUS Retrieving configuration file (malware.rules)
  • 2804598 - ETPRO ADWARE_PUP Win32.Adware-gen Install (adware_pup.rules)
  • 2804789 - ETPRO MALWARE Trojan-PSW.Win32.WebMoner.si Checkin (malware.rules)
  • 2804956 - ETPRO MALWARE herpnet C&C (malware.rules)
  • 2805110 - ETPRO MALWARE Trojan-Downloader.Banload Chekin (malware.rules)
  • 2805223 - ETPRO MALWARE W32/Scar.GKKK!tr Checkin (malware.rules)
  • 2805330 - ETPRO WEB_SPECIFIC_APPS EGallery PHP File Upload Attempt (web_specific_apps.rules)
  • 2809074 - ETPRO MALWARE WIN32.AGENT.AGLKL Checkin (malware.rules)
  • 2809249 - ETPRO MALWARE Backdoor.MSIL.Soaphrish.A checkin (malware.rules)
  • 2809868 - ETPRO MOBILE_MALWARE RiskTool.AndroidOS.SMSreg.gc Checkin (mobile_malware.rules)
  • 2812015 - ETPRO MALWARE Python/FBook.B CnC Beacon 2 (malware.rules)
  • 2812350 - ETPRO PHISHING Possible Successful Linkedin Phish Aug 11 (phishing.rules)
  • 2812501 - ETPRO MALWARE Agent.BLVS Initial Host Data POST M1 (malware.rules)
  • 2812689 - ETPRO PHISHING Successful Quickbooks Account Phish Aug 25 1 (phishing.rules)
  • 2812799 - ETPRO PHISHING Successful Quota Upgrade Phish Aug 28 (phishing.rules)
  • 2812836 - ETPRO PHISHING Successful Outlook Webmail Account Phish Sept 1 M1 (phishing.rules)
  • 2812872 - ETPRO PHISHING Successful Apple Account Phish Sept 2 (phishing.rules)
  • 2812882 - ETPRO PHISHING Successful Paypal Phish Sept 3 M4 (phishing.rules)
  • 2812888 - ETPRO ADWARE_PUP Fake AV DefenderPro2015 - Attempted Purchase (adware_pup.rules)
  • 2812905 - ETPRO PHISHING Successful Bank of America Phish M3 Sept 4 2015 (phishing.rules)
  • 2813058 - ETPRO PHISHING Successful OWA PHISH - Fake Outlook Web Access Sep 17 2015 (phishing.rules)
  • 2814007 - ETPRO PHISHING Successful Amazon Phish Sept 21 M2 (phishing.rules)
  • 2814008 - ETPRO PHISHING Successful Amazon Phish Sept 21 M3 (phishing.rules)
  • 2814010 - ETPRO PHISHING Successful Amazon Phish Sept 21 M5 (phishing.rules)
  • 2814040 - ETPRO PHISHING Successful Wire Transfer Phish Sept 22 2015 (phishing.rules)
  • 2814043 - ETPRO PHISHING Successful Apple Connect Phish Sept 22 (phishing.rules)
  • 2814124 - ETPRO PHISHING Successful Ebay Phish Sept 28 (phishing.rules)
  • 2814188 - ETPRO PHISHING Successful Phish Yale Credentials Oct 1 (phishing.rules)
  • 2814211 - ETPRO PHISHING Successful Adobe PDF Credential Phish Oct 2 2015 (phishing.rules)
  • 2814242 - ETPRO PHISHING Successful Secured PDF Credential Phish Oct 5 (phishing.rules)
  • 2814281 - ETPRO PHISHING Successful Amex Account Phish Oct 8 2015 (phishing.rules)
  • 2814310 - ETPRO PHISHING Successful Zillow Phish Oct 9 (phishing.rules)
  • 2814335 - ETPRO PHISHING Successful Quickbooks Phish Oct 12 1 (phishing.rules)
  • 2814372 - ETPRO PHISHING Successful National Australian Bank Phish Oct 14 (phishing.rules)
  • 2814512 - ETPRO MALWARE Unknown Banker Checkin 2 (malware.rules)
  • 2814530 - ETPRO PHISHING Successful Craigslist Account Phish Oct 22 (phishing.rules)
  • 2814602 - ETPRO PHISHING Successful Telecom Italia TIM Phish Oct 26 1 (phishing.rules)
  • 2814603 - ETPRO PHISHING Successful Telecom Italia TIM Phish Oct 26 2 (phishing.rules)
  • 2814615 - ETPRO PHISHING Successful Bank of America Phish Oct 27 2 (phishing.rules)
  • 2814649 - ETPRO PHISHING Successful Paypal Phish Oct 28 4 (phishing.rules)
  • 2814663 - ETPRO PHISHING Successful Adobe Shared Document Phish Oct 29 (phishing.rules)
  • 2814714 - ETPRO PHISHING Successful Paypal Phish Nov 3 2015 M1 (phishing.rules)
  • 2814743 - ETPRO PHISHING Successful Netflix Phish Nov 4 (phishing.rules)
  • 2814891 - ETPRO PHISHING Successful Amazon Phish Nov 11 M1 (phishing.rules)
  • 2815089 - ETPRO PHISHING Successful Phish Yale Credentials Nov 24 (phishing.rules)
  • 2815111 - ETPRO PHISHING Successful EDF Phish Nov 25 (phishing.rules)
  • 2815161 - ETPRO PHISHING Comerica Bank Phishing Posting Creds 1 Dec 01 (phishing.rules)
  • 2815162 - ETPRO PHISHING Comerica Bank Phishing Posting Creds 2 Dec 01 (phishing.rules)
  • 2815171 - ETPRO PHISHING Successful Adobe Shared Document Phish Dec 2 (phishing.rules)
  • 2815193 - ETPRO PHISHING Successful Natwest Phish Dec 3 M1 (phishing.rules)
  • 2815196 - ETPRO PHISHING Successful Erste Bank Phish Dec 3 (phishing.rules)
  • 2815240 - ETPRO PHISHING Successful Amazon Phish M1 Dec 8 2015 (phishing.rules)
  • 2815438 - ETPRO PHISHING Successful Chase Phish Dec 21 2015 M2 (phishing.rules)
  • 2815492 - ETPRO PHISHING Successful Marriott International Phish Dec 28 M1 (phishing.rules)
  • 2815493 - ETPRO PHISHING Successful Marriott International Phish Dec 28 M2 (phishing.rules)
  • 2815651 - ETPRO PHISHING Successful Mailbox Update Phish Jan 7 (phishing.rules)
  • 2815950 - ETPRO PHISHING Successful Suntrust Bank Phish Jan 25 M1 (phishing.rules)
  • 2816348 - ETPRO PHISHING Successful Apple Phish Feb 22 M2 (phishing.rules)
  • 2816584 - ETPRO PHISHING Successful Electric Ireland Phish Mar 8 M1 (phishing.rules)
  • 2816585 - ETPRO PHISHING Successful Electric Ireland Phish Mar 8 M2 (phishing.rules)
  • 2816602 - ETPRO PHISHING Successful Adobe Phishing March 8 (phishing.rules)
  • 2816641 - ETPRO PHISHING Successful Paypal Phish Mar 14 (phishing.rules)
  • 2816677 - ETPRO PHISHING Successful University Phish Mar 17 (phishing.rules)
  • 2819812 - ETPRO PHISHING Successful Adobe Shared Document Phish M2 Apr 15 (phishing.rules)
  • 2820037 - ETPRO PHISHING Successful Generic Email Credential Phish May 3 (phishing.rules)
  • 2820488 - ETPRO PHISHING Successful Docshares Phish Jun 6 (phishing.rules)
  • 2820652 - ETPRO EXPLOIT IMail 2006 and 8.x SMTP Stack Overflow (CVE-2006-4305) (exploit.rules)
  • 2820878 - ETPRO PHISHING Successful Amazon.com Phish Jun 27 M2 (phishing.rules)
  • 2820906 - ETPRO PHISHING Successful ATT Mobile Phish Jun 28 (phishing.rules)
  • 2821030 - ETPRO PHISHING Successful Apple Connect Phish Jul 11 (phishing.rules)
  • 2821169 - ETPRO MALWARE Patchwork APT File Exfil HTTP POST (malware.rules)
  • 2821170 - ETPRO PHISHING Successful Centurylink Account Phish Jul 15 2016 (phishing.rules)
  • 2821237 - ETPRO PHISHING Successful Adobe Shared Document Phish Jul 20 2016 (phishing.rules)
  • 2821385 - ETPRO WEB_SPECIFIC_APPS Centreon 2.5.3 Web Useralias RCE (web_specific_apps.rules)
  • 2821631 - ETPRO PHISHING Successful Adobe/Excel Phish Aug 12 2016 (phishing.rules)
  • 2821633 - ETPRO PHISHING Successful Gmail Phish M2 (set) Aug 12 2016 (phishing.rules)
  • 2821634 - ETPRO PHISHING Successful Gmail Phish M2 Aug 12 2016 (phishing.rules)
  • 2821644 - ETPRO MALWARE Win32.Shakti Uploading Files (malware.rules)
  • 2821739 - ETPRO MALWARE Zeus Variant Checkin (malware.rules)
  • 2821747 - ETPRO PHISHING Successful Phish via Wix.com M2 Aug 18 2016 (phishing.rules)
  • 2821791 - ETPRO PHISHING Successful BMO Phish M2 Aug 22 2016 (phishing.rules)
  • 2821871 - ETPRO PHISHING Successful Google Drive Phish Aug 26 2016 (phishing.rules)
  • 2821917 - ETPRO PHISHING Successful Bank of America Phish M1 Aug 30 2016 (phishing.rules)
  • 2821918 - ETPRO PHISHING Successful Bank of America Phish M2 Aug 30 2016 (phishing.rules)
  • 2821919 - ETPRO PHISHING Successful Bank of America Phish M3 Aug 30 2016 (phishing.rules)
  • 2821936 - ETPRO PHISHING Successful Facebook Phish Aug 31 2016 (phishing.rules)
  • 2821954 - ETPRO PHISHING Successful Google Drive Phish M1 Sept 1 2016 (phishing.rules)
  • 2821955 - ETPRO PHISHING Successful Google Drive Phish M2 Sept 1 2016 (phishing.rules)
  • 2821958 - ETPRO PHISHING Successful Chase Phish M1 Sept 1 2016 (phishing.rules)
  • 2821978 - ETPRO PHISHING Successful Google Drive Phish Sept M2 1 2016 (phishing.rules)
  • 2822007 - ETPRO PHISHING Successful TD Canada Trust Account Phish Sept 6 2016 (phishing.rules)
  • 2822043 - ETPRO PHISHING Successful Paypal Phish M1 Sept 8 2016 (phishing.rules)
  • 2822072 - ETPRO PHISHING Successful Facebook Phish Sept 9 2016 (phishing.rules)
  • 2822107 - ETPRO PHISHING Successful Apple Phish Sept 14 2016 (phishing.rules)
  • 2822110 - ETPRO PHISHING Successful Chase Phish Sept 14 2016 (phishing.rules)
  • 2822236 - ETPRO PHISHING Successful Dynamic Folder Phishing M2 Sept 26 2016 (phishing.rules)
  • 2822291 - ETPRO PHISHING Successful Google Docs Phish Sept 28 2016 (phishing.rules)
  • 2822314 - ETPRO PHISHING Successful Yahoo Phish Sept 29 2016 (phishing.rules)
  • 2822315 - ETPRO PHISHING Successful Bradesco Bank Phish M1 Sept 29 2016 (phishing.rules)
  • 2822318 - ETPRO PHISHING Successful Bradesco Bank Phish M4 Sept 29 2016 (phishing.rules)
  • 2822319 - ETPRO PHISHING Successful Gmail Phish M1 Sept 29 2016 (phishing.rules)
  • 2822337 - ETPRO PHISHING Successful Wells Fargo Phish M2 Sep 30 2016 (phishing.rules)
  • 2822338 - ETPRO PHISHING Successful HM Revenue Phish Sep 30 2016 (phishing.rules)
  • 2822339 - ETPRO PHISHING Successful Google Docs Phish Sep 30 2016 (phishing.rules)
  • 2822342 - ETPRO PHISHING Possible Successful Phish to Hostinger Domains Sep 30 2016 (phishing.rules)
  • 2822350 - ETPRO PHISHING Successful International Card Services Phish Oct 3 2016 (phishing.rules)
  • 2822352 - ETPRO PHISHING Successful Westpac Phish Oct 3 2016 (phishing.rules)
  • 2822369 - ETPRO PHISHING Successful Dropbox Phish Oct 04 2016 (phishing.rules)
  • 2822379 - ETPRO PHISHING Successful Amazon Phish Oct 04 2016 (phishing.rules)
  • 2822415 - ETPRO PHISHING Successful Adobe PDF Online Phish Oct 05 2016 (phishing.rules)
  • 2822434 - ETPRO PHISHING Successful Dropbox Phish Oct 06 2016 (phishing.rules)
  • 2822436 - ETPRO PHISHING Successful Paypal Phish M3 Oct 06 2016 (phishing.rules)
  • 2822470 - ETPRO PHISHING Successful Impots.gouv.fr Phish Oct 06 2016 (phishing.rules)
  • 2822523 - ETPRO PHISHING Successful Dynamic Folder Phish Oct 10 2016 (phishing.rules)
  • 2822524 - ETPRO PHISHING Successful TNT/Fedex Shipping Phish Oct 10 2016 (phishing.rules)
  • 2822525 - ETPRO PHISHING Successful Hotmail Phish Oct 10 2016 (phishing.rules)
  • 2822562 - ETPRO PHISHING Successful Google Drive Shared Document Phish Oct 11 2016 (phishing.rules)
  • 2822563 - ETPRO PHISHING Successful Rabobank Phish M1 Oct 11 2016 (phishing.rules)
  • 2822564 - ETPRO PHISHING Successful Rabobank Phish M2 Oct 11 2016 (phishing.rules)
  • 2822565 - ETPRO PHISHING Successful Rabobank Phish M3 Oct 11 2016 (phishing.rules)
  • 2822566 - ETPRO PHISHING Successful Paypal Phish Oct 11 2016 (phishing.rules)
  • 2822569 - ETPRO PHISHING Successful Chase Phish Oct 11 2016 (phishing.rules)
  • 2822573 - ETPRO PHISHING Successful Paypal Phish Oct 11 2016 (phishing.rules)
  • 2822588 - ETPRO PHISHING Successful Paypal Phish Oct 12 2016 (phishing.rules)
  • 2822595 - ETPRO PHISHING Successful Wells Fargo Phish Oct 12 2016 (phishing.rules)
  • 2822664 - ETPRO PHISHING Successful Wells Fargo Phish Oct 17 2016 (phishing.rules)
  • 2822666 - ETPRO PHISHING Successful Visa Online Phish Oct 17 2016 (phishing.rules)
  • 2822668 - ETPRO PHISHING Successful Apple Phish Oct 17 2016 (phishing.rules)
  • 2822685 - ETPRO MALWARE TheTrick Banking Trojan Affiliate Download (malware.rules)
  • 2822710 - ETPRO PHISHING Successful BancoPosta Click Phish Oct 18 2016 (phishing.rules)
  • 2822715 - ETPRO PHISHING Successful Western Union Phish M1 Oct 18 2016 (phishing.rules)
  • 2822716 - ETPRO PHISHING Successful Mobile Western Union Phish M1 Oct 18 2016 (phishing.rules)
  • 2822717 - ETPRO PHISHING Successful Western Union Phish M2 Oct 18 2016 (phishing.rules)
  • 2822719 - ETPRO PHISHING Successful WhatsApp Phish M1 Oct 18 2016 (phishing.rules)
  • 2822720 - ETPRO PHISHING Successful WhatsApp Phish M2 Oct 18 2016 (phishing.rules)
  • 2822725 - ETPRO PHISHING Successful Amazon Phish Oct 18 2016 (phishing.rules)
  • 2822783 - ETPRO PHISHING Successful Facebook Phish Oct 20 2016 (phishing.rules)
  • 2822786 - ETPRO PHISHING Successful Google Drive Phish Oct 20 2016 (phishing.rules)
  • 2822787 - ETPRO PHISHING Successful Banco Bradesco Phish Oct 20 2016 (phishing.rules)
  • 2822809 - ETPRO PHISHING Successful iTunes Connect Phish M2 Oct 21 2016 (phishing.rules)
  • 2822811 - ETPRO PHISHING Successful Alibaba Phish Oct 21 2016 (phishing.rules)
  • 2822841 - ETPRO PHISHING Successful Ebay Phish Oct 22 2016 (phishing.rules)
  • 2822843 - ETPRO PHISHING Successful Alibaba Phish Oct 24 2016 (phishing.rules)
  • 2822844 - ETPRO PHISHING Successful Yahoo Phish Oct 24 2016 (phishing.rules)
  • 2822849 - ETPRO PHISHING Successful Generic Phish (Observed in Apple/Paypal/Amazon Campaigns) M2 Oct 25 2016 (phishing.rules)
  • 2822851 - ETPRO PHISHING Successful Bradesco Bank Phish Oct 25 2016 (phishing.rules)
  • 2822854 - ETPRO PHISHING Successful Swisscom Phish Oct 25 2016 (phishing.rules)
  • 2822855 - ETPRO PHISHING Successful SGKB (DE) Phish Oct 25 2016 (phishing.rules)
  • 2822892 - ETPRO PHISHING Successful Facebook Phish Oct 26 2016 (phishing.rules)
  • 2822894 - ETPRO PHISHING Successful EDF Energy (FR) Phish M1 Oct 26 2016 (phishing.rules)
  • 2822895 - ETPRO PHISHING Successful EDF Energy (FR) Phish M2 Oct 26 2016 (phishing.rules)
  • 2822896 - ETPRO PHISHING Successful EDF Energy (FR) Phish M3 Oct 26 2016 (phishing.rules)
  • 2822932 - ETPRO PHISHING Successful Paypal Phish M1 Oct 26 2016 (phishing.rules)
  • 2822944 - ETPRO PHISHING Successful CapitalOne Phish M2 Oct 27 2016 (phishing.rules)
  • 2822987 - ETPRO PHISHING Successful Gmail Phish M1 Oct 28 2016 (phishing.rules)
  • 2823009 - ETPRO PHISHING Successful Apple ID Phish Oct 27 2016 (phishing.rules)
  • 2823015 - ETPRO PHISHING Successful Gmail Phish Oct 31 2016 (phishing.rules)
  • 2823273 - ETPRO PHISHING Successful OWA Phish Nov 15 2016 (phishing.rules)
  • 2823353 - ETPRO PHISHING Successful St. George Bank (AU) Phish Nov 18 2016 (phishing.rules)
  • 2823402 - ETPRO PHISHING Successful Dynamic Folder Phish Nov 21 M2 2016 (phishing.rules)
  • 2823434 - ETPRO PHISHING Successful Alibaba Phish Nov 22 2016 (phishing.rules)
  • 2823435 - ETPRO PHISHING Successful Paypal Phish (DE) M1 Nov 22 2016 (phishing.rules)
  • 2823436 - ETPRO PHISHING Successful Paypal Phish (DE) M2 Nov 22 2016 (phishing.rules)
  • 2823481 - ETPRO PHISHING Successful Postbank (DE) Phish Nov 28 2016 (phishing.rules)
  • 2823482 - ETPRO PHISHING Successful Alibaba Phish Nov 28 2016 (phishing.rules)
  • 2823489 - ETPRO PHISHING Successful Banco Bradesco Phish M1 Nov 29 2016 (phishing.rules)
  • 2823490 - ETPRO PHISHING Successful Banco Bradesco Phish M2 Nov 29 2016 (phishing.rules)
  • 2823512 - ETPRO PHISHING Successful Dropbox Phish Nov 23 2016 (phishing.rules)
  • 2823513 - ETPRO PHISHING Successful Blackboard Phish Nov 23 2016 (phishing.rules)
  • 2823514 - ETPRO PHISHING Successful Banco do Brasil Phish M1 Nov 29 2016 (phishing.rules)
  • 2823515 - ETPRO PHISHING Successful Banco do Brasil Phish M2 Nov 29 2016 (phishing.rules)
  • 2823544 - ETPRO PHISHING Successful US Bank Phish Nov 30 2016 (phishing.rules)
  • 2823545 - ETPRO PHISHING Successful Western Union Phish M1 Nov 30 2016 (phishing.rules)
  • 2823546 - ETPRO PHISHING Successful Western Union Phish M2 Nov 30 2016 (phishing.rules)
  • 2823547 - ETPRO PHISHING Successful Western Union Phish M3 Nov 30 2016 (phishing.rules)
  • 2823549 - ETPRO PHISHING Successful Adobe PDF Online Phish Nov 30 2016 (phishing.rules)
  • 2823573 - ETPRO PHISHING Successful Irish Tax and Customs Phish Dec 02 2016 (phishing.rules)
  • 2823575 - ETPRO PHISHING Successful Apple Connect Phish Dec 02 2016 (phishing.rules)
  • 2823602 - ETPRO PHISHING Possible Successful Phish via imcreator.com / imxprs.com Dec 02 2016 (phishing.rules)
  • 2823667 - ETPRO PHISHING Successful Dropbox Phish Dec 07 2016 (phishing.rules)
  • 2823668 - ETPRO PHISHING Successful Linkedin Phish Dec 07 2016 (phishing.rules)
  • 2823669 - ETPRO PHISHING Successful Chase Phish M1 Dec 07 2016 (phishing.rules)
  • 2823699 - ETPRO PHISHING Successful OneDrive Phish Dec 07 2016 (phishing.rules)
  • 2823741 - ETPRO PHISHING Successful CapitalOne Phish Dec 09 2016 (phishing.rules)
  • 2823742 - ETPRO PHISHING Successful HSBC Phish Dec 09 2016 (phishing.rules)
  • 2823744 - ETPRO PHISHING Successful Paypal Phish M1 Dec 09 2016 (phishing.rules)
  • 2823861 - ETPRO PHISHING Successful Captcha Entered Leading to Ursnif Download Dec 13 2016 (phishing.rules)
  • 2823875 - ETPRO PHISHING Successful HM Revenue Phish Dec 14 2016 (phishing.rules)
  • 2823904 - ETPRO PHISHING Successful Amazon (FR) Phish Dec 15 2016 (phishing.rules)
  • 2823909 - ETPRO PHISHING Successful Alibaba Phish Dec 15 2016 (phishing.rules)
  • 2823931 - ETPRO PHISHING Successful Dropbox Phish Dec 16 2016 (phishing.rules)
  • 2823933 - ETPRO PHISHING Successful University of Southern California Phish Dec 16 2016 (phishing.rules)
  • 2823968 - ETPRO PHISHING Successful DHL Phish Dec 20 2016 (phishing.rules)
  • 2823970 - ETPRO PHISHING Successful Banco Itau (BR) M1 Phish Dec 20 2016 (phishing.rules)
  • 2823971 - ETPRO PHISHING Successful Banco Itau (BR) M2 Phish Dec 20 2016 (phishing.rules)
  • 2823972 - ETPRO PHISHING Successful Banco Itau (BR) M3 Phish Dec 20 2016 (phishing.rules)
  • 2823976 - ETPRO PHISHING Successful International Card Services Phish M2 Dec 19 2016 (phishing.rules)
  • 2824095 - ETPRO PHISHING Successful SunTrust Bank Phish Dec 27 2016 (phishing.rules)
  • 2824131 - ETPRO PHISHING Successful Wells Fargo Phish M2 Dec 29 2016 (phishing.rules)
  • 2824133 - ETPRO PHISHING Successful Apple Phish Dec 29 2016 (phishing.rules)
  • 2824149 - ETPRO PHISHING Successful Santander Bank Phish Dec 30 2016 (phishing.rules)
  • 2824151 - ETPRO PHISHING Successful Santander Phish (set) M1 Dec 30 2016 (phishing.rules)
  • 2824160 - ETPRO PHISHING Successful First Citizens Bank Phish M1 Dec 30 2016 (phishing.rules)
  • 2824161 - ETPRO PHISHING Successful First Citizens Bank Phish M2 Dec 30 2016 (phishing.rules)
  • 2824177 - ETPRO PHISHING Successful DHL Phish Jan 03 2017 (phishing.rules)
  • 2824179 - ETPRO PHISHING Successful Apple Phish Jan 03 2017 (phishing.rules)
  • 2824212 - ETPRO PHISHING Successful Turbotax Phish Jan 04 2017 (phishing.rules)
  • 2824234 - ETPRO PHISHING Successful IRS Phish Jan 05 2017 (phishing.rules)
  • 2824246 - ETPRO PHISHING Phishing Landing Checking Browser/OS/Platform Jan 05 2017 (phishing.rules)
  • 2824276 - ETPRO PHISHING Successful Navy Federal Credit Union Phish Jan 09 2017 (phishing.rules)
  • 2824278 - ETPRO PHISHING Successful UBS Financial Services Phish Jan 09 2017 (phishing.rules)
  • 2824281 - ETPRO PHISHING Successful Paypal Phish M2 Jan 09 2017 (phishing.rules)
  • 2824338 - ETPRO PHISHING Successful Paypal Phish M1 Jan 10 2017 (phishing.rules)
  • 2824380 - ETPRO PHISHING Successful HM Revenue Phish M1 Jan 11 2017 (phishing.rules)
  • 2824382 - ETPRO PHISHING Successful Blockchain.info Phish Jan 11 2017 (phishing.rules)
  • 2824386 - ETPRO PHISHING Successful Personalized Yahoo Phish Jan 11 2017 (phishing.rules)
  • 2824401 - ETPRO PHISHING Successful Netflix Phish M2 Jan 12 2017 (phishing.rules)
  • 2824431 - ETPRO PHISHING Successful Paypal Phish M1 Jan 13 2017 (phishing.rules)
  • 2824467 - ETPRO PHISHING Successful Apple Phish M1 Jan 17 2017 (phishing.rules)
  • 2824470 - ETPRO PHISHING Successful Excel Phish M1 Jan 17 2017 (phishing.rules)
  • 2824471 - ETPRO PHISHING Successful Excel Phish M2 Jan 17 2017 (phishing.rules)
  • 2824508 - ETPRO PHISHING Successful Adobe Shared PDF Phish M1 Jan 18 2017 (phishing.rules)
  • 2824510 - ETPRO PHISHING Successful MBNA Phish M1 Jan 18 2017 (phishing.rules)
  • 2824511 - ETPRO PHISHING Successful MBNA Phish M2 Jan 18 2017 (phishing.rules)
  • 2824512 - ETPRO PHISHING Successful MBNA Phish M3 Jan 18 2017 (phishing.rules)
  • 2824525 - ETPRO PHISHING Successful Santander Phish M1 Jan 19 2017 (phishing.rules)
  • 2824526 - ETPRO PHISHING Successful Santander Phish M2 Jan 19 2017 (phishing.rules)
  • 2824527 - ETPRO PHISHING Successful SFR Phish Jan 19 2017 (phishing.rules)
  • 2824530 - ETPRO PHISHING Successful Yahoo Phish Jan 19 2017 (phishing.rules)
  • 2824532 - ETPRO PHISHING Successful Generic Webmail Phish Jan 19 2017 (phishing.rules)
  • 2824561 - ETPRO PHISHING Successful Credit Suisse Bank Phish M2 Jan 20 2017 (phishing.rules)
  • 2824562 - ETPRO PHISHING Successful Scotiabank Phish M1 Jan 20 2017 (phishing.rules)
  • 2824563 - ETPRO PHISHING Successful Scotiabank Phish M2 Jan 20 2017 (phishing.rules)
  • 2824564 - ETPRO PHISHING Successful Scotiabank Phish M3 Jan 20 2017 (phishing.rules)
  • 2824568 - ETPRO PHISHING Successful Paypal Phish M2 Jan 20 2017 (phishing.rules)
  • 2824569 - ETPRO PHISHING Successful Paypal Phish M3 Jan 20 2017 (phishing.rules)
  • 2824570 - ETPRO PHISHING Successful IRS Phish Jan 20 2017 (phishing.rules)
  • 2824659 - ETPRO PHISHING Successful Santander Phish M2 Jan 26 2017 (phishing.rules)
  • 2824660 - ETPRO PHISHING Successful Santander Phish M3 Jan 26 2017 (phishing.rules)
  • 2824709 - ETPRO PHISHING Successful IRS Phish M1 Jan 31 2017 (phishing.rules)
  • 2824710 - ETPRO PHISHING Successful IRS Phish M2 Jan 31 2017 (phishing.rules)
  • 2824722 - ETPRO EXPLOIT_KIT EITest SocEng Successful Inject HTTP Request Jan 15 2017 M1 (exploit_kit.rules)
  • 2824726 - ETPRO PHISHING Successful Generic Mailbox Update Phish Jan 31 2017 (phishing.rules)
  • 2824727 - ETPRO PHISHING Successful Santander Phish M1 Jan 31 2017 (phishing.rules)
  • 2824728 - ETPRO PHISHING Successful Santander Phish M2 Jan 31 2017 (phishing.rules)
  • 2824790 - ETPRO PHISHING Successful Banco do Brasil Phish M1 Feb 06 2017 (phishing.rules)
  • 2824791 - ETPRO PHISHING Successful Banco do Brasil Phish M2 Feb 06 2017 (phishing.rules)
  • 2824794 - ETPRO PHISHING Successful Paypal Phish M1 Feb 06 2017 (phishing.rules)
  • 2824795 - ETPRO PHISHING Successful Paypal Phish M2 Feb 06 2017 (phishing.rules)
  • 2824796 - ETPRO PHISHING Successful Paypal Phish M3 Feb 06 2017 (phishing.rules)
  • 2824797 - ETPRO PHISHING Successful Apple Phish Feb 06 2017 (phishing.rules)
  • 2824812 - ETPRO PHISHING Successful Craigslist Phish Feb 07 2017 (phishing.rules)
  • 2824856 - ETPRO PHISHING Successful Santander Bank (BR) Phish Feb 08 2017 (phishing.rules)
  • 2824860 - ETPRO PHISHING Successful Outlook (FR) Phish Feb 08 2017 (phishing.rules)
  • 2824928 - ETPRO PHISHING Successful Banco do Brasil Phish M1 Feb 13 2017 (phishing.rules)
  • 2824929 - ETPRO PHISHING Successful Banco do Brasil Phish M2 Feb 13 2017 (phishing.rules)
  • 2824930 - ETPRO PHISHING Successful Banco do Brasil Phish M3 Feb 13 2017 (phishing.rules)
  • 2824947 - ETPRO PHISHING Successful Microsoft Live External Link Phish Feb 14 2017 (phishing.rules)
  • 2825051 - ETPRO PHISHING Successful Diamond Online Bank Phish Feb 21 2017 (phishing.rules)
  • 2825056 - ETPRO PHISHING Successful Netflix (BR) Phish Feb 21 2017 (phishing.rules)
  • 2825057 - ETPRO PHISHING Successful Capital One Phish Feb 21 2017 (phishing.rules)
  • 2825058 - ETPRO PHISHING Successful Bank of America Phish Feb 21 2017 (phishing.rules)
  • 2825105 - ETPRO PHISHING Successful Banco de Chile Phish M1 Feb 23 2017 (phishing.rules)
  • 2825146 - ETPRO PHISHING Successful BMO Phish M3 Feb 27 2017 (phishing.rules)
  • 2825168 - ETPRO PHISHING Successful OWA Phish Mar 1 2017 (phishing.rules)
  • 2825175 - ETPRO PHISHING Successful DHL Phish Feb 28 2017 (phishing.rules)
  • 2825184 - ETPRO PHISHING Successful Natwest Bank Phish M2 Mar 01 2017 (phishing.rules)
  • 2825193 - ETPRO PHISHING Successful Twitter Verification Phish M2 Mar 01 2017 (phishing.rules)
  • 2825216 - ETPRO PHISHING Successful Amazon Phish M2 Mar 02 2017 (phishing.rules)
  • 2825233 - ETPRO PHISHING Successful Banco Itau (BR) Phish M1 Mar 03 2017 (phishing.rules)
  • 2825237 - ETPRO PHISHING Successful Twitter Verification Phish Mar 03 2017 (phishing.rules)
  • 2825242 - ETPRO PHISHING Successful Banco do Brasil Phish M1 Mar 06 2017 (phishing.rules)
  • 2825272 - ETPRO PHISHING Successful Linkedin Phish Mar 07 2017 (phishing.rules)
  • 2825279 - ETPRO PHISHING Successful Nationwide Internet Banking Phish M2 Mar 07 2017 (phishing.rules)
  • 2825318 - ETPRO PHISHING Successful Google Docs Phish Mar 09 2017 (phishing.rules)
  • 2825338 - ETPRO PHISHING Successful Santander Phish M1 Mar 09 2017 (phishing.rules)
  • 2825344 - ETPRO PHISHING Successful iCloud Payment Verification Phish Mar 09 2017 (phishing.rules)
  • 2825346 - ETPRO PHISHING Successful iCloud Phish M2 Mar 10 2017 (phishing.rules)
  • 2825347 - ETPRO PHISHING Successful iCloud Phish M3 Mar 10 2017 (phishing.rules)
  • 2825349 - ETPRO PHISHING Successful Paypal Phish M2 Mar 10 2017 (phishing.rules)
  • 2825454 - ETPRO PHISHING Successful Yahoo Phish Mar 14 2017 (phishing.rules)
  • 2825456 - ETPRO PHISHING Successful Email Settings Error Phish Mar 14 2017 (phishing.rules)
  • 2825487 - ETPRO PHISHING Successful Google Drive / Dropbox Phish M2 Mar 17 2017 (phishing.rules)
  • 2825488 - ETPRO PHISHING Successful Excel Phish Mar 16 2017 (phishing.rules)
  • 2825492 - ETPRO PHISHING Successful Verizon Phish Mar 17 2017 (phishing.rules)
  • 2825532 - ETPRO PHISHING Successful VBV Phish Mar 20 2017 (phishing.rules)
  • 2825534 - ETPRO PHISHING Successful Discover Phish Mar 20 2017 (phishing.rules)
  • 2825572 - ETPRO PHISHING Successful Airbnb Phish M1 Mar 23 2017 (phishing.rules)
  • 2825578 - ETPRO PHISHING Successful RBC Bank Phish Mar 23 2017 (phishing.rules)
  • 2825622 - ETPRO WEB_SERVER JexBoss Common URI struct Observed 3 (INBOUND) (web_server.rules)
  • 2825665 - ETPRO PHISHING Successful Yahoo Phish Mar 28 2017 (phishing.rules)
  • 2825688 - ETPRO PHISHING Successful Outlook Web Access Phish Mar 30 2017 (phishing.rules)
  • 2825689 - ETPRO PHISHING Successful USBank Phish Mar 30 2017 (phishing.rules)
  • 2825691 - ETPRO PHISHING Successful Navy Federal Phish Mar 30 2017 (phishing.rules)
  • 2825697 - ETPRO PHISHING Successful Caf.fr Phish Mar 31 2017 (phishing.rules)
  • 2825702 - ETPRO PHISHING Successful Adobe Phish Apr 3 2017 (phishing.rules)
  • 2825733 - ETPRO PHISHING Successful Santander Phish M1 Apr 04 2017 (phishing.rules)
  • 2825734 - ETPRO PHISHING Successful Santander Phish M2 Apr 04 2017 (phishing.rules)
  • 2825735 - ETPRO PHISHING Successful Santander Phish M3 Apr 04 2017 (phishing.rules)
  • 2825890 - ETPRO PHISHING Successful Santander Phish Apr 11 2017 (phishing.rules)
  • 2825891 - ETPRO PHISHING Successful ZIX Message Center Phish Apr 11 2017 (phishing.rules)
  • 2825914 - ETPRO PHISHING Successful Paypal Phish Apr 12 2017 (phishing.rules)
  • 2825921 - ETPRO PHISHING Successful Paypal Phish Apr 12 2017 (phishing.rules)
  • 2825942 - ETPRO PHISHING Successful Fortuneo Banque (FR) Phish Apr 13 2017 (phishing.rules)
  • 2826017 - ETPRO PHISHING Successful Groupwise Phish Apr 17 2017 (phishing.rules)
  • 2826040 - ETPRO PHISHING Successful Western Union Phish M1 Apr 20 2017 (phishing.rules)
  • 2826041 - ETPRO PHISHING Successful Western Union Phish M2 Apr 20 2017 (phishing.rules)
  • 2826042 - ETPRO PHISHING Successful Western Union Phish M3 Apr 20 2017 (phishing.rules)
  • 2826088 - ETPRO PHISHING Successful Orange.fr Phish Apr 24 2017 (phishing.rules)
  • 2826097 - ETPRO PHISHING Successful Paypal Phish M3 Apr 24 2017 (phishing.rules)
  • 2826115 - ETPRO PHISHING Successful National Australia Bank Phish M1 Apr 26 2017 (phishing.rules)
  • 2826116 - ETPRO PHISHING Successful National Australia Bank Phish M2 Apr 26 2017 (phishing.rules)
  • 2826118 - ETPRO PHISHING Successful Paypal Phish Apr 26 2017 (phishing.rules)
  • 2826139 - ETPRO PHISHING Successful Email Settings Verification Phish Apr 27 2017 (phishing.rules)
  • 2826179 - ETPRO PHISHING Successful Office 365 Phish Apr 28 2017 (phishing.rules)
  • 2826459 - ETPRO PHISHING Successful Banco do Brasil Phish May 22 2017 (phishing.rules)
  • 2826462 - ETPRO PHISHING Successful Google Drive Phish May 22 2017 (phishing.rules)
  • 2826465 - ETPRO PHISHING Successful Chase Phish May 22 M1 2017 (phishing.rules)
  • 2826471 - ETPRO PHISHING Successful TCF Bank Phish May 22 2017 (phishing.rules)
  • 2826476 - ETPRO PHISHING Successful Dropbox Phish May 22 2017 (phishing.rules)
  • 2826477 - ETPRO PHISHING Successful Dropbox Phish May 23 2017 (phishing.rules)
  • 2826490 - ETPRO PHISHING Successful Paypal Phish M1 May 23 2017 (phishing.rules)
  • 2826492 - ETPRO PHISHING Successful AT&T Phish May 23 2017 (phishing.rules)
  • 2826522 - ETPRO PHISHING Successful Discover Phish M1 May 25 2017 (phishing.rules)
  • 2826523 - ETPRO PHISHING Successful Discover Phish M2 May 25 2017 (phishing.rules)
  • 2826566 - ETPRO PHISHING Successful Office 365 Phish May 31 2017 (phishing.rules)
  • 2826605 - ETPRO PHISHING Successful Caixa Phish Jun 02 2017 (phishing.rules)
  • 2826606 - ETPRO PHISHING Successful Banque Populaire Phish Jun 02 2017 (phishing.rules)
  • 2826622 - ETPRO PHISHING Successful iTunes Connect Phish M1 Jun 05 2017 (phishing.rules)
  • 2826664 - ETPRO PHISHING Successful American Express Phish Jun 08 2017 (phishing.rules)
  • 2826706 - ETPRO PHISHING Successful Banco do Brasil Phish Jun 12 2017 (phishing.rules)
  • 2826711 - ETPRO PHISHING Successful Navy Federal Credit Union Phish M1 Jun 12 2017 (phishing.rules)
  • 2826712 - ETPRO PHISHING Successful Navy Federal Credit Union Phish M2 Jun 12 2017 (phishing.rules)
  • 2826767 - ETPRO PHISHING Successful Netflix Phish Jun 14 2017 (phishing.rules)
  • 2826769 - ETPRO PHISHING Successful Docusign Phish Jun 15 2017 (phishing.rules)
  • 2826777 - ETPRO PHISHING Successful Mastercard Phish M1 Jun 16 2017 (phishing.rules)
  • 2826778 - ETPRO PHISHING Successful Mastercard Phish M2 Jun 16 2017 (phishing.rules)
  • 2826876 - ETPRO PHISHING Successful Santander Phish M3 Jun 26 2017 (phishing.rules)
  • 2826890 - ETPRO PHISHING Successful Paypal Phish M2 Jun 26 2017 (phishing.rules)
  • 2826910 - ETPRO PHISHING Successful Google Drive Phish M1 Jun 28 2017 (phishing.rules)
  • 2826921 - ETPRO PHISHING Successful BRED (FR) Phish Jun 28 2017 (phishing.rules)
  • 2826922 - ETPRO PHISHING Successful IRS Phish Jun 28 2017 (phishing.rules)
  • 2826924 - ETPRO PHISHING Successful Vanguard Phish Jun 28 2017 (phishing.rules)
  • 2826935 - ETPRO PHISHING Successful 1&1 Phish Jun 29 2017 (phishing.rules)
  • 2826953 - ETPRO PHISHING Successful Chase Phish Jun 29 2017 (phishing.rules)
  • 2827032 - ETPRO PHISHING Successful Paypal Phish Jul 06 2017 (phishing.rules)
  • 2827033 - ETPRO PHISHING Successful ING Phish Jul 06 2017 (phishing.rules)
  • 2827068 - ETPRO PHISHING Successful Office 365 Phish Jul 10 2017 (phishing.rules)
  • 2827197 - ETPRO PHISHING Successful Postepay Phish Jul 18 2017 (phishing.rules)
  • 2827213 - ETPRO PHISHING Successful Apple Phish M2 Jul 19 2017 (phishing.rules)
  • 2827217 - ETPRO PHISHING Successful Etrade Phish M1 Jul 18 2017 (phishing.rules)
  • 2827225 - ETPRO PHISHING Successful University of Illinois at Chicago Phish Jul 19 2017 (phishing.rules)
  • 2827316 - ETPRO PHISHING Successful Rackspace Phish Jul 26 2017 (phishing.rules)
  • 2827382 - ETPRO PHISHING Successful Facebook Phish Aug 03 2017 (phishing.rules)
  • 2827438 - ETPRO PHISHING Successful YapiKredi Bank (TR) Phish Aug 07 2017 (phishing.rules)
  • 2827484 - ETPRO PHISHING Successful Banco Estado Phish Aug 10 2017 (phishing.rules)
  • 2827487 - ETPRO PHISHING Successful Excel Phish Aug 10 2017 (phishing.rules)
  • 2827536 - ETPRO PHISHING Successful Netflix (BR) M1 Phish Aug 15 2017 (phishing.rules)
  • 2827558 - ETPRO PHISHING Successful Chase Phish M1 Aug 16 2017 (phishing.rules)
  • 2827567 - ETPRO PHISHING Successful Yapikredi Bank (TR) Phish M2 Aug 17 2017 (phishing.rules)
  • 2827631 - ETPRO PHISHING Successful AKBank Direkt (TR) M1 Phish Aug 23 2017 (phishing.rules)
  • 2827632 - ETPRO PHISHING Successful AKBank Direkt (TR) M2 Phish Aug 23 2017 (phishing.rules)
  • 2827668 - ETPRO PHISHING Possible Successful Dropbox Phish Aug 25 2017 (phishing.rules)
  • 2827676 - ETPRO PHISHING Successful Paypal Phish (IT) M1 Aug 25 2017 (phishing.rules)
  • 2827677 - ETPRO PHISHING Successful Paypal Phish (IT) M2 Aug 25 2017 (phishing.rules)
  • 2827678 - ETPRO PHISHING Successful Paypal Phish (IT) M3 Aug 25 2017 (phishing.rules)
  • 2827747 - ETPRO PHISHING Successful Amazon (IT) Phish Aug 30 2017 (phishing.rules)
  • 2827751 - ETPRO PHISHING Successful NatWest Phish M1 Aug 30 2017 (phishing.rules)
  • 2827768 - ETPRO PHISHING Successful Paypal (DE) Phish M1 Aug 31 2017 (phishing.rules)
  • 2827795 - ETPRO MALWARE Unk.Stealer CnC Checkin (malware.rules)
  • 2827884 - ETPRO PHISHING Successful ABSA Phish Sep 11 2017 (phishing.rules)
  • 2827889 - ETPRO PHISHING Successful Dropbox Phish Sep 11 2017 (phishing.rules)
  • 2828044 - ETPRO PHISHING Successful Paypal Phish Sep 23 2017 (phishing.rules)
  • 2828068 - ETPRO PHISHING Successful BCP Bank M2 Phish Sep 26 2017 (phishing.rules)
  • 2828215 - ETPRO PHISHING Successful Citibank (BR) Phish Oct 10 2017 (phishing.rules)
  • 2828241 - ETPRO PHISHING Successful AT&T Phish Oct 11 2017 (phishing.rules)
  • 2828266 - ETPRO PHISHING Successful Banque Populaire Phish M1 Oct 12 2017 (phishing.rules)
  • 2828281 - ETPRO PHISHING Successful Chase Phish M1 Oct 12 2017 (phishing.rules)
  • 2828284 - ETPRO PHISHING Successful Adobe PDF Online Phish Oct 13 2016 (phishing.rules)
  • 2828302 - ETPRO PHISHING Successful Chase Phish Oct 13 2017 (phishing.rules)
  • 2828338 - ETPRO PHISHING Successful Google Drive Phish Oct 18 2017 (phishing.rules)
  • 2828418 - ETPRO PHISHING Successful EDF (FR) Phish Oct 25 2017 (phishing.rules)
  • 2828455 - ETPRO PHISHING Successful Capital One Phish M1 Oct 27 2017 (phishing.rules)
  • 2828456 - ETPRO PHISHING Successful Capital One Phish M2 Oct 27 2017 (phishing.rules)
  • 2828459 - ETPRO PHISHING Successful DHL Phish M2 Oct 27 2017 (phishing.rules)
  • 2828777 - ETPRO PHISHING Successful Caisse d’Epargne Phish 2017-12-04 M2 (phishing.rules)
  • 2828804 - ETPRO PHISHING Successful Banque Postale (FR) Phish 2017-12-06 M1 (phishing.rules)
  • 2829002 - ETPRO PHISHING Successful BBVA Columbia Phish 2017-12-19 (phishing.rules)
  • 2829014 - ETPRO PHISHING Successful Wells Fargo Phish 2017-12-21 (phishing.rules)
  • 2829055 - ETPRO PHISHING Successful Dropbox Phish 2017-12-22 (phishing.rules)
  • 2829095 - ETPRO PHISHING Possible Successful Generic Phish (set) 2017-12-27 (phishing.rules)
  • 2829131 - ETPRO PHISHING Successful SFR Account Phish 2018-01-02 (phishing.rules)
  • 2829141 - ETPRO PHISHING Successful Orange.fr Phish 2018-01-03 (phishing.rules)
  • 2829177 - ETPRO PHISHING Successful Bank of America Phish 2018-01-05 (phishing.rules)
  • 2829200 - ETPRO PHISHING Possible Successful Cyberplus (FR) Phish M1 2018-01-08 (phishing.rules)
  • 2829243 - ETPRO PHISHING Successful Paypal Phish 2018-01-10 (phishing.rules)
  • 2829263 - ETPRO PHISHING Successful Chase Phish 2018-01-12 (phishing.rules)
  • 2829668 - ETPRO PHISHING Successful USAA Phish 2018-02-14 M2 (phishing.rules)
  • 2829669 - ETPRO PHISHING Successful USAA Phish 2018-02-14 M3 (phishing.rules)
  • 2830662 - ETPRO MALWARE JS.SocGholish POST Request (malware.rules)
  • 2831555 - ETPRO MALWARE MSIL/Supreme Miner CnC Checkin M2 (malware.rules)
  • 2832633 - ETPRO PHISHING Successful ABSA Phish 2018-09-17 (phishing.rules)
  • 2833130 - ETPRO PHISHING Successful Sharepoint Phish 2018-10-16 (phishing.rules)
  • 2833502 - ETPRO MALWARE Amadey CnC Check-In (malware.rules)
  • 2833781 - ETPRO PHISHING Successful Credit_Mutuel Phish 2018-12-03 (phishing.rules)
  • 2834618 - ETPRO PHISHING Successful Apple Phish 2019-01-28 (phishing.rules)
  • 2835143 - ETPRO PHISHING Successful Simplii Phish 2019-03-04 (phishing.rules)
  • 2835323 - ETPRO PHISHING Successful Wells Fargo Phish 2019-03-13 (phishing.rules)
  • 2835770 - ETPRO PHISHING Successful CIBC Phish 2019-04-07 (phishing.rules)
  • 2835771 - ETPRO PHISHING Successful CIBC Phish 2019-04-07 (phishing.rules)
  • 2835803 - ETPRO PHISHING Successful Bank of America Phish 2019-04-10 (phishing.rules)
  • 2836086 - ETPRO PHISHING Successful Apple Phish 2019-04-26 (phishing.rules)
  • 2836297 - ETPRO MALWARE Win32/Pterodo.NG Checkin 3 (malware.rules)
  • 2836750 - ETPRO PHISHING Successful Generic Credit Card Information Phish 2019-06-10 (phishing.rules)
  • 2837970 - ETPRO MALWARE Win32/DarkRAT CnC Activity (malware.rules)
  • 2840250 - ETPRO PHISHING Successful Facebook Phish 2020-01-03 (phishing.rules)
  • 2840265 - ETPRO PHISHING Successful Microsoft Account Phish 2020-01-06 (phishing.rules)
  • 2840377 - ETPRO PHISHING Successful Apple iCloud Phish 2020-01-10 (phishing.rules)
  • 2840559 - ETPRO PHISHING Successful VK Phish 2020-01-22 (phishing.rules)

Disabled and modified rules:

  • 2012966 - ET SHELLCODE Possible %0d%0d%0d%0d Heap Spray Attempt (shellcode.rules)
  • 2050111 - ET MALWARE [ANY.RUN] Xeno-RAT TCP Keep-Alive (malware.rules)