[***] Summary: [***]

11 new Open signatures, 16 new Pro (11+5). Angler EK, Various AndroidOS, ZeroLocker.

Thanks: @EKwatcher @StopMalvertisin and @kafeine

[+++] Added rules: [+++]

Open:

2018954 - ET CURRENT_EVENTS Angler Encoded Shellcode IE (current_events.rules)
2018955 - ET CURRENT_EVENTS Angler Encoded Shellcode Silverlight (current_events.rules)
2018956 - ET CURRENT_EVENTS Angler Encoded Shellcode Flash (current_events.rules)
2018957 - ET CURRENT_EVENTS Angler Encoded Shellcode Java (current_events.rules)
2018958 - ET TROJAN Worm.Win32.Vobfus Checkin 3 (trojan.rules)
2018959 - ET POLICY PE EXE or DLL Windows file download HTTP (policy.rules)
2018960 - ET TROJAN ZeroLocker Downloading Config (trojan.rules)
2018961 - ET TROJAN ZeroLocker Activity (trojan.rules)
2018962 - ET TROJAN ZeroLocker Activity (trojan.rules)
2018963 - ET CURRENT_EVENTS ZeroLocker EXE Download (current_events.rules)
2018964 - ET TROJAN Variant.Strictor Dropper (trojan.rules)

Pro:

2808584 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.Fakeguard.a Checkin (mobile_malware.rules)
2808585 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.Fakeguard.a Checkin 2 (mobile_malware.rules)
2808586 - ETPRO MALWARE PUP Win32/WuJi.A Checkin (malware.rules)
2808587 - ETPRO TROJAN Win32/CoinMiner.SO .exe download (trojan.rules)
2808588 - ETPRO TROJAN Linux.DDoS Checkin (trojan.rules)

[///] Modified active rules: [///]

2006445 - ET WEB_SERVER Possible SQL Injection Attempt SELECT FROM (web_server.rules)
2014340 - ET MALWARE W32/GameVance Adware User Agent (malware.rules)
2017136 - ET MALWARE Adware.Gamevance.AV Checkin (malware.rules)
2018755 - ET SCAN Possible WordPress xmlrpc.php BruteForce in Progress (scan.rules)
2018951 - ET TROJAN Tor Based Locker Page (Torrentlocker) (trojan.rules)
2805991 - ETPRO TROJAN Win32.Dapato.bsyi Checkin (trojan.rules)
2806324 - ETPRO TROJAN Trojan-Downloader.Win32.Agent.gzfw Checkin (trojan.rules)
2806378 - ETPRO TROJAN Win32/Moure.A Checkin (trojan.rules)
2806440 - ETPRO TROJAN Trojan.Generic.KDV.807443 Checkin (trojan.rules)
2806466 - ETPRO TROJAN Trojan.GenericKD.1011510 checkin (trojan.rules)
2806809 - ETPRO TROJAN Win32/Agent.URS Checkin (trojan.rules)
2807038 - ETPRO TROJAN Win32/Genome.I Checkin (trojan.rules)
2807082 - ETPRO MOBILE_MALWARE Android/TrojanSMS.Agent.PS Checkin 2 (mobile_malware.rules)
2807089 - ETPRO TROJAN Backdoor.Win32.Agent.dbse Checkin (trojan.rules)
2807788 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.Blocal.a Checkin (mobile_malware.rules)
2807931 - ETPRO MOBILE_MALWARE Android/Badao.A Checkin 2 (mobile_malware.rules)
2807941 - ETPRO TROJAN Trojan.Win32.Blocker.ctrojn Checkin (trojan.rules)
2807984 - ETPRO TROJAN Trojan.Win32.Iframer.a Checkin (trojan.rules)
2808072 - ETPRO MALWARE Win32/SquareNet.A Checkin (malware.rules)
2808101 - ETPRO MOBILE_MALWARE Android/UUPAY.B Checkin (mobile_malware.rules)
2808168 - ETPRO MOBILE_MALWARE Android.Riskware.SmsPay.C Checkin (mobile_malware.rules)
2808273 - ETPRO TROJAN MiniDuke variant C&C activity (trojan.rules)

[---] Removed rules: [---]

2017837 - ET TROJAN Possible Zbot Activity Common Download Struct (trojan.rules)
2806155 - ETPRO TROJAN Worm.Win32.Vobfus Checkin 3 (trojan.rules)

Date:
Summary title:
11 new Open signatures, 16 new Pro (11+5). Angler EK, Various AndroidOS, ZeroLocker.