Ruleset Update Summary - 2024/11/30 - v10764

Summary:

0 new OPEN, 0 new PRO (0 + 0)


Modified inactive rules:

  • 2049955 - ET MALWARE TrollAgent CnC Domain in DNS Lookup (ar .kostin .p-e .kr) (malware.rules)
  • 2049956 - ET MALWARE Test CnC Domain in DNS Lookup (test .com) (malware.rules)
  • 2049957 - ET MALWARE X CnC Domain in DNS Lookup (test .com) (malware.rules)
  • 2050125 - ET INFO DNS Query to Online Application Hosting Domain (supabase .co) (info.rules)
  • 2051846 - ET MALWARE DNS Query to Earth Krahang APT Domain (update .centos-yum .com) (malware.rules)
  • 2054218 - ET INFO Server Responded with Vulnerable OpenSSH Version (CVE-2024-6387) (info.rules)
  • 2856125 - ETPRO MALWARE FIN7/Carbanak Related Domain in DNS Lookup (malware.rules)
  • 2856126 - ETPRO MALWARE Observed FIN7/Carbanak Domain in TLS SNI (malware.rules)
  • 2856462 - ETPRO MALWARE DNS Query to Hello2Malware Domain (malware.rules)
  • 2856465 - ETPRO MALWARE Observed Hello2Malware Domain in TLS SNI (malware.rules)