Weekly Community Review - June 2, 2023
|
|
0
|
216
|
June 2, 2023
|
Addressing an FP: 2016950 - ET MALWARE Possible Win32/Hupigon ip.txt with a Non-Mozilla UA
|
|
0
|
176
|
October 2, 2023
|
Vidar Stealer
|
|
5
|
410
|
December 28, 2023
|
Weekly Community Review - July 29, 2023
|
|
0
|
180
|
August 7, 2023
|
SIG: ET MOBILE_MALWARE Android/InfamousChisel.InfoStealer APT28/SANDWORM Data Exfiltration
|
|
2
|
324
|
September 1, 2023
|
DarkGate
|
|
4
|
391
|
December 28, 2023
|
Meta vs Redline Stealer
|
|
4
|
365
|
January 9, 2024
|
Mekotio
|
|
2
|
327
|
August 24, 2023
|
DynamicRAT
|
|
2
|
476
|
June 10, 2023
|
PennyWise Stealer - Update on rules
|
|
2
|
380
|
July 28, 2023
|
Eternity Clipper
|
|
4
|
357
|
September 27, 2023
|
ETPro Feedback
|
|
3
|
163
|
January 26, 2024
|
TheBoxClipper
|
|
2
|
405
|
August 30, 2023
|
Hydrochasma (Fast Reverse Proxy)
|
|
7
|
478
|
July 27, 2023
|
IDS and IPS rules on LAN
|
|
1
|
334
|
January 22, 2024
|
Poverty Stealer
|
|
8
|
646
|
December 28, 2023
|
Phemedrone Stealer
|
|
1
|
224
|
August 7, 2023
|
New Sig: ET TROJAN W32/Kazuar.Backdoor Turla APT Hardcoded Cookie
|
|
1
|
259
|
November 20, 2023
|
Cryptbot Stealer - Update on Rules
|
|
2
|
331
|
July 29, 2023
|
Rule Metadata & Exploit Signature Difficulties
|
|
0
|
493
|
June 9, 2023
|
Konni.APT
|
|
1
|
374
|
July 14, 2023
|
Ruleset Update Summary - 2024/03/05 - v10545
|
|
0
|
421
|
March 5, 2024
|
Ruleset Update Summary - 2023/06/14 - v10348
|
|
0
|
447
|
June 14, 2023
|
Ruleset Update Summary - 2023/07/12 - v10370
|
|
0
|
418
|
July 12, 2023
|
If you get the alert "ET POLICY Vulnerable Java Version 1.8.x Detected"
|
|
2
|
456
|
September 22, 2023
|
Severity Rating for "Exfil" Signatures
|
|
2
|
276
|
May 30, 2023
|
RadX RAT
|
|
2
|
216
|
January 24, 2024
|
Weekly Community Review - November 15, 2023
|
|
0
|
362
|
November 17, 2023
|
2048118 is a little loose
|
|
3
|
192
|
October 12, 2023
|
False positive on Android Trojan
|
|
1
|
247
|
October 19, 2023
|
Possible FP - JA3 Hash - [Abuse.ch] Possible Adware
|
|
1
|
273
|
August 1, 2023
|
WhiteSnake
|
|
2
|
185
|
January 31, 2024
|
FP: ETPRO TROJAN Possible Panda Banker DGA Lets Encrypt SSL Cert [2825567]
|
|
2
|
182
|
November 29, 2023
|
MALWARE - classtype:misc-activity
|
|
1
|
202
|
November 27, 2023
|
AsukaStealer (Observerstealer.Gen)
|
|
2
|
168
|
March 19, 2024
|
Understanding Signature Direction
|
|
0
|
376
|
July 14, 2023
|
Is bloodhound signature included in the latest weekly update
|
|
3
|
152
|
November 23, 2023
|
Parallax Rat
|
|
3
|
288
|
August 14, 2023
|
Ruleset Update Summary - 2023/10/17 - v10443
|
|
0
|
326
|
October 17, 2023
|
SilentCryptoMiner
|
|
1
|
186
|
February 21, 2024
|
Signature: ET TROJAN Possible HijackLoader Second Stage PNG
|
|
5
|
203
|
March 21, 2024
|
SIG: W32/LitterDrifter.Loader Gamaredon USB Worm
|
|
2
|
152
|
November 21, 2023
|
Weekly Community Review - September 27, 2023
|
|
0
|
306
|
October 2, 2023
|
Ruleset Update Summary - 2023/09/26 - v10425
|
|
0
|
311
|
September 26, 2023
|
Ruleset Update Summary - 2023/06/26 - v10358
|
|
0
|
292
|
June 26, 2023
|
ET MALWARE Generic Request to gate.php Dotted-Quad - Rule ID 2022986
|
|
1
|
176
|
January 29, 2024
|
Doc.emergingthreats.net, Reference information
|
|
5
|
329
|
March 18, 2024
|
FPs on new sig 2854494
|
|
2
|
165
|
June 20, 2023
|
SIGS: Kapeka/ICYWELL Backdoor APT44/Sandworm Part 2
|
|
1
|
91
|
April 18, 2024
|
Ruleset Update Summary - 2023/06/15 - v10349
|
|
4
|
651
|
June 16, 2023
|