Ruleset Update Summary - 2024/07/04 - v10637

rulesbot · July 4, 2024, 11:24am

Summary:

97 new OPEN, 154 new PRO (97 + 57)

Added rules:

Open:

2018600 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018693 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (CryptoWall C2) (malware.rules)
2018694 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018695 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018697 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018698 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018700 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Malware C2) (malware.rules)
2018701 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018702 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018703 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018704 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018706 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018707 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018708 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018711 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018714 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018717 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (CryptoWall C2) (malware.rules)
2018720 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Shylock C2) (malware.rules)
2018721 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018722 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak C2) (malware.rules)
2018723 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018724 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018725 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018726 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018727 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018728 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018730 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018731 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018732 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018733 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018734 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018736 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018746 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018747 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018760 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018807 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (ZeuS MITM) (malware.rules)
2018851 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018859 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018860 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018861 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018862 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018863 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018865 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018866 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018910 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018911 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018913 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018916 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018917 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018937 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2021521 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2021562 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (VMZeuS MITM) (malware.rules)
2021613 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2021614 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2021899 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021932 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021933 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021934 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022324 - ET MALWARE Malicious SSL certificate detected (Possible Sinkhole) (malware.rules)
2022480 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022960 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Ixeshe CnC) (malware.rules)
2023529 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL Certificate Detected (Malware CnC) (malware.rules)
2024083 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2025424 - ET MALWARE Observed Malicious SSL Cert (OSX/Calender 2 Mining) (malware.rules)
2025536 - ET MALWARE Observed Malicious SSL Cert (Coin-Hive In Browser Mining) (malware.rules)
2025582 - ET MALWARE Observed Malicious SSL Cert (Coinhive URL Shortener) (malware.rules)
2027195 - ET MALWARE Observed Malicious SSL Cert (DonotGroup Android CnC) (malware.rules)
2029354 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029355 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029357 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029358 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029359 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029362 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029363 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029364 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029366 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029367 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029368 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029369 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029370 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029371 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029372 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029374 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029375 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029376 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2029379 - ET MALWARE Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (malware.rules)
2033076 - ET MALWARE Observed File Transfer Service SSL/TLS Certificate (transfer .sh) (malware.rules)
2033369 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2033370 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2033371 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2033372 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2033373 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2033374 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2033375 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2033376 - ET MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (malware.rules)
2034846 - ET MALWARE Observed Malicious SSL Cert (showmypc.com) (malware.rules)
2037960 - ET MALWARE Observed Suspicious SSL Cert (Acme Co) (malware.rules)

Pro:

2812132 - ETPRO MALWARE Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2812776 - ETPRO MALWARE Malicious SSL certificate detected (malware.rules)
2814752 - ETPRO MALWARE Malicious SSL certificate detected (Possible AU Bank Fraud) (malware.rules)
2821320 - ETPRO MALWARE ZeusSSL/Terdot.A/Zloader Malicious SSL Cert Observed (malware.rules)
2821724 - ETPRO MALWARE Evil Redirector to EK - Observed Malicious SSL Cert (malware.rules)
2821952 - ETPRO MALWARE Evil Redirector to EK - Observed Malicious SSL Cert (malware.rules)
2822035 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2822222 - ETPRO MALWARE Evil Redirector to EK - Observed Malicious SSL Cert (malware.rules)
2822249 - ETPRO MALWARE Evil Redirector to EK - Observed Malicious SSL Cert (malware.rules)
2822989 - ETPRO MALWARE Malicious SSL Certificate Detected (Qadars CnC) (malware.rules)
2823134 - ETPRO MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2823286 - ETPRO MALWARE Observed Malicious SSL Cert (Gootkit CnC) (malware.rules)
2823567 - ETPRO MALWARE Zeus OPENSSL Banker Malicious SSL Certificate Detected (malware.rules)
2823568 - ETPRO MALWARE Zeus OPENSSL Banker Malicious SSL Certificate Detected (malware.rules)
2825000 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2826029 - ETPRO MALWARE Malicious SSL Certificate Observed (IcedID/BokBot CnC) (malware.rules)
2827601 - ETPRO MALWARE Observed Malicious SSL Cert 2017-08-21 (MalDoc DL) (malware.rules)
2828825 - ETPRO MALWARE Observed Malicious SSL Cert 2017-12-07 (MalDoc DL) (malware.rules)
2829688 - ETPRO MALWARE Kovter Malicious SSL Certificate Detected (malware.rules)
2829986 - ETPRO MALWARE Observed Malicious SSL Cert (ApolloClicker) (malware.rules)
2832214 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda CnC) (malware.rules)
2832435 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC Domain) (malware.rules)
2832639 - ETPRO MALWARE Observed Malicious SSL Cert (CoinHive Mining Domain) (malware.rules)
2833190 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL 2018-10-18 2) (malware.rules)
2833522 - ETPRO MALWARE Observed Malicious SSL Cert (ServHelper RAT CnC) (malware.rules)
2833861 - ETPRO MALWARE Observed Malicious SSL Cert (APT 34 CnC Domain) (malware.rules)
2833881 - ETPRO MALWARE Observed Malicious SSL Cert (ServHelper CnC) (malware.rules)
2834074 - ETPRO MALWARE Observed Malicious SSL Cert (ServHelper CnC) (malware.rules)
2835149 - ETPRO MALWARE Observed Malicious SSL Cert (EK Landing) (malware.rules)
2835199 - ETPRO MALWARE Observed Malicious SSL Cert (Cobalt Strike CnC) (malware.rules)
2835266 - ETPRO MALWARE Observed Malicious SSL Cert (DonotGroup Android CnC) (malware.rules)
2835695 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC) (malware.rules)
2835917 - ETPRO MALWARE Observed Malicious SSL Cert (CoreDn Activity) (malware.rules)
2836208 - ETPRO MALWARE Observed Malicious SSL Cert (Evil Keitaro TDS CnC) (malware.rules)
2837006 - ETPRO MALWARE Observed Malicious SSL Cert (APT33 CnC) (malware.rules)
2837130 - ETPRO MALWARE Observed Malicious SSL Cert (Fallout EK CnC) (malware.rules)
2837137 - ETPRO MALWARE Observed Malicious SSL Cert (Win32/PWSZbot.vh CnC) (malware.rules)
2837825 - ETPRO MALWARE Observed Malicious SSL Cert (PUP/PUA Toolbar Helper) (malware.rules)
2837836 - ETPRO MALWARE Observed Malicious SSL Cert (Fallout EK CnC) (malware.rules)
2837846 - ETPRO MALWARE Observed Malicious SSL Cert (EvilJS Retrieving Payload) (malware.rules)
2838324 - ETPRO MALWARE Observed Malicious SSL Cert (DonotGroup CnC) (malware.rules)
2838756 - ETPRO MALWARE Observed Malicious SSL Cert (Evil Keitaro TDS Redirection) (malware.rules)
2839083 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC) (malware.rules)
2839085 - ETPRO MALWARE Observed Malicious SSL Cert (SONE CnC) (malware.rules)
2839086 - ETPRO MALWARE Observed Malicious SSL Cert (CobInt CnC) (malware.rules)
2839796 - ETPRO MALWARE Observed Malicious SSL Cert (GRIFFON CnC) (malware.rules)
2840391 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) 2020-01-10 (malware.rules)
2840478 - ETPRO MALWARE Observed Malicious SSL Cert (Get2 CnC) (malware.rules)
2842448 - ETPRO MALWARE Observed Malicious SSL Cert (Barclays UK Phish) (malware.rules)
2842774 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2843056 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC) (malware.rules)
2843255 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2843260 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2844835 - ETPRO MALWARE Observed Malicious SSL Cert (IcedID) (malware.rules)
2845610 - ETPRO MALWARE Observed Malicious SSL Cert (AsyncRAT) (malware.rules)
2848048 - ETPRO MALWARE Observed Malicious SSL Cert (AsyncRAT) (malware.rules)
2850007 - ETPRO MALWARE Observed Malicious SSL Cert (Acme Co) (malware.rules)

Modified inactive rules:

2018494 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018692 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018719 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018745 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018767 - ET MALWARE Malicious SSL Cert (KINS C2) (malware.rules)
2018852 - ET MALWARE Malicious SSL Cert (KINS C2) (malware.rules)
2018902 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018912 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018935 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2018942 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS MITM) (malware.rules)
2018943 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018944 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak MITM) (malware.rules)
2018947 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019009 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019069 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019070 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019079 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019106 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019107 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019109 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019120 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019121 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Upatre C2) (malware.rules)
2019135 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019147 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019148 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019150 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019151 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019152 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019153 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019192 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019205 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019225 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (UPATRE CnC) (malware.rules)
2019279 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2019328 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019330 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (UPATRE CnC) (malware.rules)
2019360 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019361 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019363 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TeslaCrypt) (malware.rules)
2019414 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019466 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019477 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019516 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Backoff CnC) (malware.rules)
2019517 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019603 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019604 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS C2) (malware.rules)
2019648 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019649 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019670 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019671 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019691 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019708 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019709 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019720 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019721 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019787 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019810 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019811 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019812 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019813 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Hesperbot CnC) (malware.rules)
2019815 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019818 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019819 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2019890 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019906 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Cridex CnC) (malware.rules)
2019962 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2019987 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020075 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020079 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020104 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Malware CnC) (malware.rules)
2020149 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020187 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020216 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (URLzone CnC) (malware.rules)
2020217 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2020219 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020220 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020242 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2020307 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020313 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020314 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020322 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020331 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020372 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2020564 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020567 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020582 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (CryptoLocker CnC) (malware.rules)
2020625 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2020647 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020687 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020688 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020697 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020745 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020843 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020864 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2020961 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2021013 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex/Trickbot CnC) (malware.rules)
2021031 - ET MALWARE Malicious SSL Cert (KINS C2) (malware.rules)
2021032 - ET MALWARE Malicious SSL Cert (KINS C2) (malware.rules)
2021086 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2021096 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Malware CnC) (malware.rules)
2021106 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2021112 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2021121 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2021154 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2021155 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Yakes CnC) (malware.rules)
2021175 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Downloader CnC) (malware.rules)
2021192 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021193 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2021196 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Spy.Shiz CnC) (malware.rules)
2021197 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021199 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021208 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021210 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021211 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021212 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021220 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2021221 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021222 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2021273 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TeslaCrypt MITM) (malware.rules)
2021289 - ET MALWARE Malicious SSL certificate detected (FindPOS) (malware.rules)
2021314 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Spy.Shiz CnC) (malware.rules)
2021315 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Possible Sinkhole) (malware.rules)
2021339 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021341 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021342 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021343 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021345 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021346 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021347 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021348 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021350 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2021353 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2021355 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021375 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2021391 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dyre CnC) (malware.rules)
2021393 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2021411 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Spy.Shiz CnC) (malware.rules)
2021512 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2021513 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2021514 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex CnC) (malware.rules)
2021516 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021517 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021530 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021546 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2021553 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (VMZeuS MITM) (malware.rules)
2021563 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2021565 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021566 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021592 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021593 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021594 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021598 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021599 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021604 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021622 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2021633 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi) (malware.rules)
2021634 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Redyms CnC) (malware.rules)
2021635 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi) (malware.rules)
2021636 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021686 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021703 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (KINS CnC) (malware.rules)
2021704 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021705 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ursnif CnC) (malware.rules)
2021706 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2021717 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021721 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021722 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021732 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021733 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021734 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Tinba MITM) (malware.rules)
2021751 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021767 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021770 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021771 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021772 - ET MALWARE Malicious SSL certificate detected (FindPOS) (malware.rules)
2021776 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021777 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021779 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021781 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021782 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021783 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021784 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC) (malware.rules)
2021797 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021798 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021801 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021803 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021804 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021805 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Rovnix CnC) (malware.rules)
2021809 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021810 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021815 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Spy.Shiz CnC) (malware.rules)
2021818 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021819 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021824 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021825 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021826 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021827 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021828 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2021842 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC) (malware.rules)
2021843 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021845 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021864 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021865 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021866 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021884 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021885 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021887 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021888 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021895 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2021896 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021897 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021898 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021902 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021903 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2021904 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021909 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021911 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021920 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021921 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021924 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021925 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021926 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021937 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021938 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021945 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021950 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021957 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021958 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2021959 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2021980 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2021994 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022004 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2022021 - ET MALWARE Malicious SSL certificate detected (Spy.Shiz CnC) (malware.rules)
2022057 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ProxyChanger) (malware.rules)
2022058 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL Certificate Detected (Shifu) (malware.rules)
2022066 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ProxyChanger) (malware.rules)
2022067 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ProxyChanger) (malware.rules)
2022076 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu) (malware.rules)
2022078 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022087 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC) (malware.rules)
2022088 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022096 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC) (malware.rules)
2022097 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC) (malware.rules)
2022098 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit) (malware.rules)
2022099 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC) (malware.rules)
2022129 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Retefe CnC) (malware.rules)
2022130 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Retefe CnC) (malware.rules)
2022208 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC) (malware.rules)
2022226 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022228 - ET MALWARE Malicious SSL certificate detected (FindPOS) (malware.rules)
2022230 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit MITM) (malware.rules)
2022231 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022232 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC) (malware.rules)
2022235 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022247 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022249 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022250 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022251 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022252 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022267 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022275 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Malware CnC) (malware.rules)
2022276 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022277 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022278 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022286 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022287 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022293 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022301 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022305 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2022307 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TorrentLocker CnC) (malware.rules)
2022321 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022322 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022328 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022329 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022386 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022387 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022389 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022390 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022391 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022392 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022394 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022395 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022396 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022397 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2022404 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022408 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2022474 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022475 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2022478 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Zeus CnC) (malware.rules)
2022488 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC) (malware.rules)
2022508 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2022510 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022511 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022512 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022513 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022514 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022521 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2022522 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2022535 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2022536 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022537 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC) (malware.rules)
2022553 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Malware CnC) (malware.rules)
2022571 - ET MALWARE Malicious SSL certificate detected (Geodo MITM) (malware.rules)
2022613 - ET MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2022623 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC) (malware.rules)
2022685 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC) (malware.rules)
2022713 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (malware.rules)
2022733 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022735 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC) (malware.rules)
2022736 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars CnC) (malware.rules)
2022796 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC) (malware.rules)
2022799 - ET MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2022833 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ZeuS CnC) (malware.rules)
2022877 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2022878 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Shifu CnC) (malware.rules)
2022880 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2022888 - ET MALWARE Malicious SSL Certificate Detected (Bancos C2) (malware.rules)
2022908 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL Certificate Detected (Sinkhole) (malware.rules)
2022920 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2022921 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Malware C2) (malware.rules)
2022922 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (H1N1 C2 or Zeus Panda C2) (malware.rules)
2022944 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Malware C2) (malware.rules)
2022945 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Rockloader) (malware.rules)
2022946 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Zeus C2) (malware.rules)
2022948 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Malware C2) (malware.rules)
2022953 - ET MALWARE Malicious SSL certificate detected (OSX/Keydnap CnC) (malware.rules)
2022961 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2023005 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (ZeuS CnC) (malware.rules)
2023006 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2023007 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2023008 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2023009 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023010 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2023011 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Downloader.Pony CnC) (malware.rules)
2023013 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC) (malware.rules)
2023031 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2023157 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023158 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023159 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023160 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023161 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023162 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023163 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023164 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2023166 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023167 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023168 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Hancitor CnC) (malware.rules)
2023170 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023171 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023172 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023173 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023175 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023176 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (RockLoader CnC) (malware.rules)
2023177 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023243 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023244 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023245 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023262 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023263 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023265 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023266 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023267 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023268 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Quakbot CnC) (malware.rules)
2023269 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Qadars MITM) (malware.rules)
2023287 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023294 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023295 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023296 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023308 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023309 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023322 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023323 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023324 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023325 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023326 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023342 - ET MALWARE Malicious SSL certificate detected (Powershell Trojan) (malware.rules)
2023347 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2023350 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023402 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023403 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023405 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023406 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023476 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Dridex) (malware.rules)
2023490 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023491 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023492 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023493 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023496 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023498 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023499 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (FindPOS CnC) (malware.rules)
2023521 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023522 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023530 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL Certificate Detected (Chthonic MITM) (malware.rules)
2023536 - ET MALWARE Observed Malicious SSL Cert (FlokiBot CnC) (malware.rules)
2023537 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2023538 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Tuhkit C2) (malware.rules)
2023539 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2023540 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Vawtrak CnC) (malware.rules)
2023541 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TrickBot CnC) (malware.rules)
2023542 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Zeus CnC) (malware.rules)
2023543 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2023555 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023556 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gozi MITM) (malware.rules)
2023590 - ET MALWARE Zeus OPENSSL Banker Malicious SSL Certificate Detected (malware.rules)
2023591 - ET MALWARE Zeus OPENSSL Banker Malicious SSL Certificate Detected (malware.rules)
2023593 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2023639 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2023689 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2023717 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2023718 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2023719 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2023722 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Quakbot CnC) (malware.rules)
2023723 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi CnC) (malware.rules)
2023724 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2023726 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (Chthonic CnC) (malware.rules)
2023727 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TrickBot CnC) (malware.rules)
2023902 - ET MALWARE Unknown Malicious SSL Cert 1 (malware.rules)
2023904 - ET MALWARE Unknown Malicious SSL Cert 3 (malware.rules)
2023905 - ET MALWARE Unknown Malicious SSL Cert 4 (malware.rules)
2023908 - ET MALWARE Unknown Malicious SSL Cert 7 (malware.rules)
2024068 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024069 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024070 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024071 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Android Marcher C2) (malware.rules)
2024073 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024074 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024075 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024076 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024078 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024079 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024080 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024081 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024082 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024085 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024086 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024087 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024088 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024089 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024090 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024091 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Gozi MITM) (malware.rules)
2024433 - ET MALWARE Observed Malicious SSL Cert (HiddenTear Variant CnC) (malware.rules)
2024681 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (URLzone) (malware.rules)
2024682 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (Adwind) (malware.rules)
2024683 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (ZeusPanda MITM) (malware.rules)
2024684 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (ZeusPanda MITM) (malware.rules)
2024685 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (ZeusPanda MITM) (malware.rules)
2024686 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (ZeusPanda MITM) (malware.rules)
2024687 - ET MALWARE ABUSE.CH SSL Fingerprint Blacklist Malicious SSL Certificate Detected (ZeusPanda MITM) (malware.rules)
2024902 - ET MALWARE Observed Malicious SSL Cert (Snatch CnC) (malware.rules)
2024903 - ET MALWARE Observed Malicious SSL Cert (Snatch CnC) (malware.rules)
2025155 - ET MALWARE ABUSE.CH SSL Blacklist Malicious SSL certificate detected (TrickBot CnC) (malware.rules)
2025388 - ET MALWARE SteamStealer Malicious SSL Certificate Detected (malware.rules)
2026644 - ET MALWARE Observed Malicious SSL Cert (BrushaLoader Domain) (malware.rules)
2026659 - ET MALWARE Observed Malicious SSL Cert (BrushaLoader Domain) (malware.rules)
2026899 - ET MALWARE Observed Malicious SSL Cert (BrushaLoader CnC) (malware.rules)
2027222 - ET MALWARE Observed Malicious SSL Cert (Unattributed CnC) (malware.rules)
2029200 - ET MALWARE Observed Malicious SSL Cert (jssLoader CnC) (malware.rules)
2029295 - ET MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2029296 - ET MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2030614 - ET MALWARE Observed Malicious SSL Cert (Lazarus APT MalDoc DL 2020-07-30) (malware.rules)
2033140 - ET MALWARE Observed APT41 Malicious SSL Cert (ColunmTK Campaign) (malware.rules)
2034099 - ET MALWARE Observed Cobalt Strike CnC Domain (yawero .com in TLS SNI) (malware.rules)
2034100 - ET MALWARE Observed Cobalt Strike CnC Domain (sazoya .com in TLS SNI) (malware.rules)
2034140 - ET MALWARE Observed Ursnif CnC Domain (Gloderuniok .website in TLS SNI) (malware.rules)
2034141 - ET MALWARE Observed Ursnif CnC Domain (Vloderuniok .website in TLS SNI) (malware.rules)
2034142 - ET MALWARE Observed Cobalt Strike CnC Domain (Gojihu .com in TLS SNI) (malware.rules)
2034143 - ET MALWARE Observed Cobalt Strike CnC Domain (Yuxicu .com in TLS SNI) (malware.rules)
2034214 - ET MALWARE Observed Malicious SSL/TLS Certificate (IcedID CnC) (malware.rules)
2034215 - ET MALWARE Observed Malicious SSL/TLS Certificate (IcedID CnC) (malware.rules)
2034216 - ET MALWARE IcedID CnC Domain in SSL/TLS SNI (malware.rules)
2034217 - ET MALWARE IcedID CnC Domain in SSL/TLS SNI (malware.rules)
2034218 - ET MALWARE IcedID CnC Domain in SSL/TLS SNI (malware.rules)
2035607 - ET MALWARE Observed Malicious SSL Cert (AsyncRAT Server) (malware.rules)
2037243 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037244 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037245 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037248 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037256 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037258 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037259 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037260 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037732 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037733 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037778 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037807 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037808 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037824 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2037825 - ET MALWARE Observed Malicious SSL/TLS Certificate (SilentLibrarian) (malware.rules)
2054243 - ET INFO Server Responding to Microsoft Office HTTP Request for .html with JavaScript (info.rules)
2811579 - ETPRO MALWARE Malicious SSL certificate detected (Meterpreter) (malware.rules)
2812377 - ETPRO MALWARE Malicious SSL certificate detected (Dridex) (malware.rules)
2812823 - ETPRO MALWARE Malicious SSL certificate detected (Fareit CnC) (malware.rules)
2812965 - ETPRO MALWARE Malicious SSL Certificate detected (Variant.Barys) (malware.rules)
2814668 - ETPRO MALWARE Malicious SSL certificate detected (Meterpreter) (malware.rules)
2814673 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif CnC) (malware.rules)
2815043 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2815291 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit CnC) (malware.rules)
2815425 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif CnC) (malware.rules)
2815430 - ETPRO MALWARE Malicious SSL Certificate Detected (Pupy C2) (malware.rules)
2815685 - ETPRO MALWARE Malicious SSL certificate detected (KINS CnC) (malware.rules)
2815686 - ETPRO MALWARE Malicious SSL certificate detected (KINS CnC) (malware.rules)
2815970 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2815989 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2816071 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2816082 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2816083 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2816103 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2816148 - ETPRO MALWARE Malicious SSL certificate detected (Backdoor.Mizzmo) (malware.rules)
2816173 - ETPRO MALWARE Malicious SSL certificate detected (Backdoor.Mizzmo) (malware.rules)
2816176 - ETPRO MALWARE Malicious SSL certificate detected (Backdoor.Mizzmo) (malware.rules)
2816178 - ETPRO MALWARE Malicious SSL certificate detected (Backdoor.Mizzmo) (malware.rules)
2816179 - ETPRO MALWARE Malicious SSL certificate detected (Backdoor.Mizzmo) (malware.rules)
2816332 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2816405 - ETPRO MALWARE Win32/Tepoyx Malicious SSL Certificate Detected (malware.rules)
2816407 - ETPRO MALWARE Win32/Pawxnic.A Malicious SSL Certificate Detected (malware.rules)
2816495 - ETPRO MALWARE Malicious SSL Certificate Detected (Ursnif Injects) (malware.rules)
2816630 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2819917 - ETPRO MALWARE Malicious SSL certificate detected (Backdoor.Mizzmo) (malware.rules)
2819927 - ETPRO MALWARE Malicious SSL certificate detected (Backdoor.Mizzmo) (malware.rules)
2819960 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2820004 - ETPRO MALWARE Malicious SSL Certificate Detected (Social Engineering Kit) (malware.rules)
2820173 - ETPRO MALWARE Malicious SSL certificate detected (Gozi CnC) (malware.rules)
2820327 - ETPRO MALWARE Panda Banker Malicious SSL Certificate Detected (malware.rules)
2820482 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2820484 - ETPRO MALWARE Malicious SSL Certificate Detected (Zeus C2) (malware.rules)
2820547 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2820548 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2820593 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2820594 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2820738 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2820739 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2820751 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2820752 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2820789 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2820790 - ETPRO MALWARE Malicious SSL certificate detected (Gootkit Injects) (malware.rules)
2820981 - ETPRO MALWARE Malicious SSL certificate detected (Malware C2) (malware.rules)
2821053 - ETPRO MALWARE Malicious SSL certificate detected (Malware C2) (malware.rules)
2821125 - ETPRO MALWARE Malicious SSL certificate detected (Aggressor/Metasploit C2) (malware.rules)
2821141 - ETPRO MALWARE Malicious SSL certificate detected (Gootkit Injects) (malware.rules)
2821180 - ETPRO MALWARE Malicious SSL Certificate Detected (Zloader CnC) (malware.rules)
2821197 - ETPRO MALWARE ZeusSSL/Terdot.A/Zloader Malicious SSL Cert Observed (malware.rules)
2821209 - ETPRO MALWARE Malicious SSL certificate detected (Malware C2) (malware.rules)
2821210 - ETPRO MALWARE Malicious SSL certificate detected (Malware C2) (malware.rules)
2821341 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif CnC) (malware.rules)
2821525 - ETPRO MALWARE Malicious SSL certificate detected (Zeus Injects) (malware.rules)
2821602 - ETPRO MALWARE Malicious SSL certificate detected (Malware C2) (malware.rules)
2821613 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda Banker) (malware.rules)
2821624 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda Injects) (malware.rules)
2821625 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda Injects) (malware.rules)
2821809 - ETPRO MALWARE Terdot.A/Zloader Malicious SSL Cert Observed (malware.rules)
2821878 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2822166 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2822167 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2822168 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2822233 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda) (malware.rules)
2822331 - ETPRO MALWARE Malicious SSL certificate detected (Odinaff CnC) (malware.rules)
2822414 - ETPRO MALWARE Zloader Malicious SSL Cert Observed (malware.rules)
2822521 - ETPRO MALWARE Malicious SSL Certificate Detected (Linux.Rex Scanner) (malware.rules)
2822577 - ETPRO MALWARE Malicious SSL certificate detected (Odinaff CnC) (malware.rules)
2822660 - ETPRO MALWARE Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2822694 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda) (malware.rules)
2822879 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2822969 - ETPRO MALWARE Observed Malicious SSL Cert (Shifu CnC) (malware.rules)
2822970 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif CnC) (malware.rules)
2823046 - ETPRO MALWARE Malicious SSL Certificate Detected (Dreambot Variant) (malware.rules)
2823133 - ETPRO MALWARE Malicious SSL certificate detected (Gootkit CnC) (malware.rules)
2823327 - ETPRO MALWARE Observed Malicious SSL Cert (Gootkit CnC) (malware.rules)
2823397 - ETPRO MALWARE Observed Malicious SSL Cert (FlokiBot CnC) (malware.rules)
2823444 - ETPRO MALWARE Malicious SSL Certificate Detected (Ursnif Injects) (malware.rules)
2823445 - ETPRO MALWARE Malicious SSL Certificate Detected (Ursnif Injects) (malware.rules)
2823446 - ETPRO MALWARE Malicious SSL Certificate Detected (Ursnif Injects) (malware.rules)
2823450 - ETPRO MALWARE Malicious SSL Certificate Detected (Vawtrak CnC) (malware.rules)
2823451 - ETPRO MALWARE Malicious SSL Certificate Detected (Vawtrak CnC) (malware.rules)
2823477 - ETPRO MALWARE Malicious SSL Certificate Detected (Ursnif CnC) (malware.rules)
2823480 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2823600 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2823623 - ETPRO MALWARE Observed Malicious SSL Cert (Vawtrak CnC) (malware.rules)
2823657 - ETPRO MALWARE Observed Malicious SSL Cert (JS/Ostap Downloader) (malware.rules)
2823658 - ETPRO MALWARE Malicious SSL Certificate Detected (Dreambot) (malware.rules)
2823673 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2823703 - ETPRO MALWARE Observed Malicious SSL Cert (FlokiBot CnC) (malware.rules)
2823705 - ETPRO MALWARE Observed Malicious SSL Cert (FlokiBot CnC) (malware.rules)
2823717 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2823901 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2824231 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2824273 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2824448 - ETPRO MALWARE Observed Malicious SSL Cert (Gootkit) (malware.rules)
2824478 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2824548 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2824633 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2824636 - ETPRO MALWARE Possible Malicious SSL - Default Values and Serial 0 (Ursnif CnC) (malware.rules)
2824648 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2824649 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2824681 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2824682 - ETPRO MALWARE ZLoader Malicious SSL Cert Observed (malware.rules)
2824690 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2824693 - ETPRO MALWARE Gootkit Malicious SSL Cert Observed (malware.rules)
2824694 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2824703 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2824848 - ETPRO MALWARE Odinaff Malicious SSL Certificate Detected (malware.rules)
2824918 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2825040 - ETPRO MALWARE Malicious SSL Certificate Detected (Gootkit C2) (malware.rules)
2825041 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2825459 - ETPRO MALWARE ZLoader Malicious SSL Cert Observed (malware.rules)
2825507 - ETPRO MALWARE Observed Malicious SSL Cert (Gozi ISFB/Dreambot) (malware.rules)
2825558 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2825579 - ETPRO MALWARE ZLoader Malicious SSL Cert Observed (malware.rules)
2825580 - ETPRO MALWARE ZLoader Malicious SSL Cert Observed (malware.rules)
2826028 - ETPRO MALWARE Malicious SSL Certificate Observed (Win32/Kryptik.FRIW Banker Injects) (malware.rules)
2826050 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2826052 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2826073 - ETPRO MALWARE ZLoader Malicious SSL Cert Observed (malware.rules)
2826074 - ETPRO MALWARE ZLoader Malicious SSL Cert Observed (malware.rules)
2826145 - ETPRO MALWARE Malicious SSL Certificate Detected (CobaltStrike Dropper) (malware.rules)
2826279 - ETPRO MALWARE ZLoader Malicious SSL Cert Observed (malware.rules)
2826639 - ETPRO MALWARE Malicious SSL certificate detected (PupyRat) (malware.rules)
2826821 - ETPRO MALWARE Malicious SSL certificate detected (Ursnif Injects) (malware.rules)
2827117 - ETPRO MALWARE Zeus Panda Banker Malicious SSL Certificate Detected (malware.rules)
2827244 - ETPRO MALWARE Observed Malicious SSL Cert (URLZone CnC) (malware.rules)
2827464 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2827595 - ETPRO MALWARE Win32/Agent.SPU Malicious SSL Certificate Detected (malware.rules)
2827764 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2827821 - ETPRO MALWARE Malicious SSL Certificate Detected (CredPhishing) (malware.rules)
2827822 - ETPRO MALWARE Malicious SSL Certificate Detected (CredPhishing) (malware.rules)
2827891 - ETPRO MALWARE Malicious SSL Certificate Detected (NetSupport Manager RAT) (malware.rules)
2828191 - ETPRO MALWARE Observed Malicious SSL Cert (Fake O356 Installer) (malware.rules)
2828332 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2828428 - ETPRO MALWARE Malicious SSL certificate detected (TrickBot C2) (malware.rules)
2828551 - ETPRO MALWARE Observed Malicious SSL Cert (Spymaster Keylogger Domain) (malware.rules)
2828585 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda CnC) (malware.rules)
2828665 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc HTA Download) (malware.rules)
2828781 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda) (malware.rules)
2828862 - ETPRO MALWARE Observed Malicious SSL Cert (Minergate Module DL) (malware.rules)
2828961 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2829075 - ETPRO MALWARE Observed Malicious SSL Cert (URLZone CnC) (malware.rules)
2829076 - ETPRO MALWARE Observed Malicious SSL Cert (Bateleur CnC) (malware.rules)
2829109 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2829228 - ETPRO MALWARE Observed Malicious SSL Cert (Dridex CnC) (malware.rules)
2829252 - ETPRO MALWARE Observed Malicious SSL Cert (Zeus Panda CnC) (malware.rules)
2829290 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL) (malware.rules)
2830327 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL 2018-04-10 2) (malware.rules)
2831053 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL 2018-05-29 2) (malware.rules)
2831322 - ETPRO MALWARE Observed Malicious SSL Certificate (IcedID) (malware.rules)
2833520 - ETPRO MALWARE Observed Malicious SSL Cert (SocGholish Redirect) (malware.rules)
2833864 - ETPRO MALWARE Observed Malicious SSL Cert (BrushaLoader CnC) (malware.rules)
2833977 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC) (malware.rules)
2834172 - ETPRO MALWARE Observed Malicious SSL Cert (MalDoc DL 2019-01-02) (malware.rules)
2838194 - ETPRO MALWARE Observed Malicious SSL Cert (PsiXBot CnC) (malware.rules)
2838428 - ETPRO MALWARE Observed Malicious SSL Cert (Inception Group CnC) (malware.rules)
2838429 - ETPRO MALWARE Observed Malicious SSL Cert (Inception Group CnC) (malware.rules)
2840046 - ETPRO MALWARE Observed Malicious SSL Cert (IcedID CnC) (malware.rules)
2840080 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC) (malware.rules)
2840114 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2840141 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) 2019-12-27 (malware.rules)
2840228 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) 2020-01-02 (malware.rules)
2840229 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) 2020-01-02 (malware.rules)
2840328 - ETPRO MALWARE Observed Malicious SSL Cert (Gozi CnC) (malware.rules)
2840357 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2840417 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) 2020-01-13 (malware.rules)
2840506 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC) (malware.rules)
2840547 - ETPRO MALWARE Observed Malicious SSL Cert (Ursnif CnC) (malware.rules)
2840548 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) 2020-01-21 (malware.rules)
2840618 - ETPRO MALWARE Observed Malicious SSL Cert (AZORult CnC) (malware.rules)
2840740 - ETPRO MALWARE Observed Malicious SSL Cert (IcedID CnC) (malware.rules)
2840778 - ETPRO MALWARE Observed Malicious SSL Cert (DonotGroup CnC) (malware.rules)
2846476 - ETPRO MALWARE Malicious SSL Certificate detected (PlugX CnC) (malware.rules)
2846761 - ETPRO MALWARE Observed Malicious SSL Cert (AsyncRAT) (malware.rules)
2847146 - ETPRO MALWARE Observed Malicious SSL Cert (OrcusRAT) (malware.rules)
2847151 - ETPRO MALWARE Observed Malicious SSL Cert (AsyncRAT) (malware.rules)
2848460 - ETPRO MALWARE Observed Malicious SSL Cert (AsyncRAT) (malware.rules)
2849254 - ETPRO MALWARE Observed Malicious SSL Cert (AsyncRAT) (malware.rules)
2849840 - ETPRO MALWARE Observed Malicious SSL Cert (AsyncRAT) (malware.rules)
2850279 - ETPRO MALWARE Observed Malicious SSL Cert (BazaLoader CnC) (malware.rules)
2850280 - ETPRO MALWARE Observed Malicious SSL Cert (BazaLoader CnC) (malware.rules)
2850487 - ETPRO MALWARE Observed Malicious SSL/TLS Certificate (CobaltStrike CnC) (malware.rules)

Removed rules:

2025424 - ET ADWARE_PUP Observed Malicious SSL Cert (OSX/Calender 2 Mining) (adware_pup.rules)
2025536 - ET COINMINER Observed Malicious SSL Cert (Coin-Hive In Browser Mining) (coinminer.rules)
2025582 - ET COINMINER Observed Malicious SSL Cert (Coinhive URL Shortener) (coinminer.rules)
2027195 - ET MOBILE_MALWARE Observed Malicious SSL Cert (DonotGroup Android CnC) (mobile_malware.rules)
2029354 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029355 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029357 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029358 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029359 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029362 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029363 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029364 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029366 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029367 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029368 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029369 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029370 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029371 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029372 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029374 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029375 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029376 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2029379 - ET WEB_CLIENT Observed Malicious SSL Cert (Charming Kitten Phishing Domain) (web_client.rules)
2033076 - ET POLICY Observed File Transfer Service SSL/TLS Certificate (transfer .sh) (policy.rules)
2033369 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2033370 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2033371 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2033372 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2033373 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2033374 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2033375 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2033376 - ET MOBILE_MALWARE Observed Malicious SSL Cert (Android/FakeAdBlocker CnC) (mobile_malware.rules)
2034846 - ET INFO Observed Malicious SSL Cert (showmypc.com) (info.rules)
2037960 - ET HUNTING Observed Suspicious SSL Cert (Acme Co) (hunting.rules)
2821724 - ETPRO WEB_CLIENT Evil Redirector to EK - Observed Malicious SSL Cert (web_client.rules)
2821952 - ETPRO WEB_CLIENT Evil Redirector to EK - Observed Malicious SSL Cert (web_client.rules)
2822222 - ETPRO WEB_CLIENT Evil Redirector to EK - Observed Malicious SSL Cert (web_client.rules)
2822249 - ETPRO WEB_CLIENT Evil Redirector to EK - Observed Malicious SSL Cert (web_client.rules)
2829986 - ETPRO ADWARE_PUP Observed Malicious SSL Cert (ApolloClicker) (adware_pup.rules)
2832435 - ETPRO ADWARE_PUP Observed Malicious SSL Cert (Ursnif CnC Domain) (adware_pup.rules)
2832639 - ETPRO COINMINER Observed Malicious SSL Cert (CoinHive Mining Domain) (coinminer.rules)
2835149 - ETPRO EXPLOIT Observed Malicious SSL Cert (EK Landing) (exploit.rules)
2835266 - ETPRO MOBILE_MALWARE Observed Malicious SSL Cert (DonotGroup Android CnC) (mobile_malware.rules)
2836208 - ETPRO EXPLOIT_KIT Observed Malicious SSL Cert (Evil Keitaro TDS CnC) (exploit_kit.rules)
2837130 - ETPRO EXPLOIT Observed Malicious SSL Cert (Fallout EK CnC) (exploit.rules)
2837137 - ETPRO ADWARE_PUP Observed Malicious SSL Cert (Win32/PWSZbot.vh CnC) (adware_pup.rules)
2837825 - ETPRO ADWARE_PUP Observed Malicious SSL Cert (PUP/PUA Toolbar Helper) (adware_pup.rules)
2837836 - ETPRO EXPLOIT_KIT Observed Malicious SSL Cert (Fallout EK CnC) (exploit_kit.rules)
2837846 - ETPRO WEB_CLIENT Observed Malicious SSL Cert (EvilJS Retrieving Payload) (web_client.rules)
2838756 - ETPRO EXPLOIT_KIT Observed Malicious SSL Cert (Evil Keitaro TDS Redirection) (exploit_kit.rules)
2842448 - ETPRO PHISHING Observed Malicious SSL Cert (Barclays UK Phish) (phishing.rules)

Topic	Replies	Views
Ruleset Update Summary - 2024/11/27 - v10756 Ruleset Updates	44	November 27, 2024
Ruleset Update Summary - 2024/05/24 - v10603 Ruleset Updates	238	May 24, 2024
Ruleset Update Summary - 2024/04/19 - v10579 Ruleset Updates	235	April 19, 2024
Ruleset Update Summary - 2024/06/03 - v10608 Ruleset Updates	242	June 3, 2024
Ruleset Update Summary - 2023/11/07 - v10460 Ruleset Updates	381	November 7, 2023

Ruleset Update Summary - 2024/07/04 - v10637

Summary:

Added rules:

Open:

Pro:

Modified inactive rules:

Removed rules:

Related topics