Daily Ruleset Update Summary 2017/03/02

[***] Summary: [***]

23 new Pro signatures. Zeus Panda Banker, Bunitu, PowerShell Empire.

[+++]          Added rules:          [+++]

2825187 - ETPRO CURRENT_EVENTS Successful AT&T Account Update Phish Mar 01 2017 (current_events.rules)
2825188 - ETPRO CURRENT_EVENTS Successful Amazon Mobile Phish Mar 01 2017 (current_events.rules)
2825189 - ETPRO TROJAN Win32.Orsam/Cosmo Checkin 3 (trojan.rules)
2825190 - ETPRO CURRENT_EVENTS Successful OfferUp Phish Mar 01 2017 (current_events.rules)
2825191 - ETPRO TROJAN MSIL/Unk HTTP CnC Activity (trojan.rules)
2825192 - ETPRO CURRENT_EVENTS Successful Twitter Verification Phish M1 Mar 01 2017 (current_events.rules)
2825193 - ETPRO CURRENT_EVENTS Successful Twitter Verification Phish M2 Mar 01 2017 (current_events.rules)
2825194 - ETPRO CURRENT_EVENTS Magnitude EK Soc Eng Mar 01 2017 M1 (current_events.rules)
2825195 - ETPRO CURRENT_EVENTS Magnitude EK Soc Eng Mar 01 2017 M2 (current_events.rules)
2825196 - ETPRO TROJAN Win64/Agent.GR CnC Beacon (trojan.rules)
2825197 - ETPRO MOBILE_MALWARE Trojan-Clicker.AndroidOS.Simpo.bo Checkin (mobile_malware.rules)
2825198 - ETPRO TROJAN Win32.Bunitu DNS Lookup (trojan.rules)
2825199 - ETPRO CURRENT_EVENTS Successful University of New Hampshire Phish Mar 02 2017 (current_events.rules)
2825200 - ETPRO TROJAN Zeus Panda Banker Malicious SSL Certificate Detected (trojan.rules)
2825201 - ETPRO MOBILE_MALWARE RiskTool.AndroidOS.Dnotua.oe CnC Beacon (mobile_malware.rules)
2825202 - ETPRO TROJAN PowerShell Empire Malicious SSL Certificate Detected (trojan.rules)
2825203 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.SmsThief.ac SMS/Contact Exfil via SMTP (mobile_malware.rules)
2825204 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.SmsThief.ac SMS/Contact Exfil via SMTP 2 (mobile_malware.rules)
2825205 - ETPRO TROJAN Zeus Panda Injects Domain in SNI (trojan.rules)
2825206 - ETPRO MOBILE_MALWARE Android.Trojan.InfoStealer.EZ Checkin (mobile_malware.rules)
2825207 - ETPRO TROJAN Zeus Panda Banker Malicious SSL Certificate Detected (trojan.rules)
2825208 - ETPRO CURRENT_EVENTS SunDown EK T2 Flash Exploit URI Struct March 02 2017 (current_events.rules)
2825209 - ETPRO TROJAN Zeus Panda Injects Domain in SNI (trojan.rules)

[///]     Modified active rules:     [///]

2807561 - ETPRO TROJAN Bunitu Covert Channel Session Init (trojan.rules)
2819866 - ETPRO MOBILE_MALWARE Android.Trojan.Downloader.CI Checkin (mobile_malware.rules)
2824531 - ETPRO CURRENT_EVENTS Successful Aol Phish Jan 19 2017 (current_events.rules)
 

Date: 
Thursday, March 2, 2017 - 00:00