[***] Summary: [***] 12 new Open signatures, 15 new Pro signatures (12 + 3). Dyre, Sweet Orange, AndroidOS.Koler. Thanks: @kafeine, Jake Warren. [+++] Added rules: [+++] Open: 2019342 - ET CURRENT_EVENTS Possible Dyre SSL Cert Oct 3 2014 (current_events.rules)
2019343 - ET CURRENT_EVENTS FAKEIE 11.0 Minimal Headers (flowbit set) (current_events.rules)
2019344 - ET CURRENT_EVENTS FAKEIE Minimal Headers (flowbit set) (current_events.rules)
2019346 - ET DOS Terse HTTP GET Likely LOIC (dos.rules)
2019345 - ET CURRENT_EVENTS Possible CryptoLocker TorComponent DL (current_events.rules)
2019347 - ET DOS HTTP GET AAAAAAAA Likely FireFlood (dos.rules)
2019348 - ET DOS Terse HTTP GET Likely AnonMafiaIC DDoS tool (dos.rules)
2019349 - ET DOS Terse HTTP GET Likely AnonGhost DDoS tool (dos.rules)
2019350 - ET DOS Terse HTTP GET Likely GoodBye 5.2 DDoS tool (dos.rules)
2019351 - ET CURRENT_EVENTS Possible Sweet Orange Secondary Landing (current_events.rules)
2019352 - ET CURRENT_EVENTS Possible Sweet Orange redirection 19 September 2014 (current_events.rules)
2019353 - ET TROJAN Cryptolocker Checkin (trojan.rules) Pro: 2808938 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.Koler.d Checkin (mobile_malware.rules)
2808939 - ETPRO MALWARE Wajam Checkin (malware.rules)
2808940 - ETPRO MOBILE_MALWARE AndroidOS.Wintertiger.A Checkin (mobile_malware.rules)
[///] Modified active rules: [///] 2013439 - ET TROJAN Dirt Jumper/Russkill3 Checkin (trojan.rules)
2014361 - ET TROJAN Win32/Protux.B Download Update (trojan.rules)
2018403 - ET TROJAN GENERIC Likely Malicious Fake IE Downloading .exe (trojan.rules)
2804288 - ETPRO TROJAN Win32/OnLineGames.NM Install (trojan.rules)
2804414 - ETPRO TROJAN TrojanDropper.Win32/Agent.KA Checkin (trojan.rules)
2806069 - ETPRO TROJAN Worm.Win32.Dorkbot IRC Channel Join (trojan.rules)
2808283 - ETPRO MALWARE Crossder Checkin (malware.rules)
[---] Removed rules: [---] 2403334 - ET CINS Active Threat Intelligence Poor Reputation IP group 35 (ciarmy.rules)
2804667 - ETPRO TROJAN Khan DDoS Bot Checkin 2 (trojan.rules)
Date: 
Thursday, October 2, 2014 - 22:00