[***] Summary: [***]

5 new Open signatures, 17 new Pro (5+12). Sweet Orange, Kuluoz/Asprox, Various Android.

Thanks: Jake Warren, Kevin Ross, Regit, Adnan Shukor, Nathan Fowler, tdzmont, Ify Ajokubi.

[+++] Added rules: [+++]

Open:

2018737 - ET CURRENT_EVENTS Fake CDN Sweet Orange Gate July 17 2014 (current_events.rules)
2018738 - ET TROJAN Pain File Stealer sending wallet.dat via SMTP (trojan.rules)
2018739 - ET TROJAN Kuluoz / Asprox checkin (trojan.rules)
2018740 - ET WEB_SERVER Adobe Flash Player Rosetta Flash compressed CWS in URI (web_server.rules)
2018741 - ET CURRENT_EVENTS Fiesta EK randomized javascript Gate Jul 18 2014 (current_events.rules)

Pro:

2808384 - ETPRO MOBILE_MALWARE Android/Simplocker.D Checkin (mobile_malware.rules)
2808385 - ETPRO TROJAN Win32.Xema Checkin (trojan.rules)
2808386 - ETPRO TROJAN Trojan.Win32.Generic.AtsI Checkin (trojan.rules)
2808387 - ETPRO TROJAN Trojan.Win32.Generic.AtsI Checkin 2 (trojan.rules)
2808388 - ETPRO TROJAN W32/Expiro.BB checkin (trojan.rules)
2808389 - ETPRO TROJAN Dtcontx.F Checkin (trojan.rules)
2808390 - ETPRO MALWARE PUP AdWare.OxyPumper Download (malware.rules)
2808391 - ETPRO TROJAN Trojan.Injector.AWX checkin (trojan.rules)
2808392 - ETPRO TROJAN Win32/Kanav.B Checkin (trojan.rules)
2808393 - ETPRO MOBILE_MALWARE Android/Fakeinst.HX Checkin (mobile_malware.rules)
2808394 - ETPRO MOBILE_MALWARE Android.Trojan.Agent.XFG Checkin (mobile_malware.rules)
2808395 - ETPRO TROJAN Win32/Rovnix.H checkin (trojan.rules)

[---] Disabled and modified rules: [---]

2000908 - ET MALWARE WhenUClick.com App and Search Bar Install (1) (malware.rules)
2000909 - ET MALWARE WhenUClick.com App and Search Bar Install (2) (malware.rules)
2000910 - ET MALWARE WhenUClick.com Clock Sync App Checkin (malware.rules)
2000911 - ET MALWARE WhenUClick.com Weather App Checkin (malware.rules)
2000912 - ET MALWARE WhenUClick.com Clock Sync App Checkin (1) (malware.rules)
2000913 - ET MALWARE WhenUClick.com Clock Sync App Checkin (2) (malware.rules)
2000914 - ET MALWARE WhenUClick.com Weather App Checkin (1) (malware.rules)
2000915 - ET MALWARE WhenUClick.com Weather App Checkin (2) (malware.rules)
2000916 - ET MALWARE WhenUClick.com WhenUSave App Checkin (malware.rules)
2000917 - ET MALWARE WhenUClick.com WhenUSave Data Retrieval (offersdata) (malware.rules)
2000918 - ET MALWARE WhenUClick.com Desktop Bar Install (malware.rules)
2001443 - ET MALWARE WhenUClick.com Desktop Bar App Checkin (malware.rules)
2003389 - ET MALWARE WhenUClick.com Application Version Check (malware.rules)
2003404 - ET MALWARE WhenUClick.com WhenUSave Data Retrieval (DataChunksGZ) (malware.rules)

[---] Disabled rules: [---]

2000919 - ET MALWARE WhenUClick.com WhenUSave Data Retrieval (Searchdb) (malware.rules)
Date: 
Thursday, July 17, 2014 - 22:00