Ruleset Update Summary - 2024/07/25 - v10653

Summary:

9 new OPEN, 9 new PRO (9 + 0)

Thanks @malwrhunterteam, @500mk500, @suyog41


Added rules:

Open:

  • 2054660 - ET MALWARE Observed Malicious SSL Cert (Pantegana Botnet RAT) (malware.rules)
  • 2054661 - ET EXPLOIT_KIT ZPHP Domain in DNS Lookup (imc1 .top) (exploit_kit.rules)
  • 2054662 - ET EXPLOIT_KIT ZPHP Domain in TLS SNI (imc1 .top) (exploit_kit.rules)
  • 2054663 - ET MALWARE ZPHP CnC Domain in DNS Lookup (hhic .top) (malware.rules)
  • 2054664 - ET MALWARE ZPHP CnC Domain in TLS SNI (hhic .top) (malware.rules)
  • 2054665 - ET MALWARE Win32/Rhadamanthys CnC Activity (GET) (malware.rules)
  • 2054666 - ET MALWARE JaskaGO Infrastructure Observed Inbound (malware.rules)
  • 2054667 - ET MALWARE JaskaGO CnC Activity (GET) (malware.rules)
  • 2054668 - ET MALWARE JaskaGO CnC Server Response (malware.rules)