Daily Ruleset Update Summary 2017/05/15

[***]            Summary:            [***]

2 new Open, 27 new Pro (2 + 25). WannaCry DNS, Various Mobile.

Thanks: @R3MRUM, @LowsonWebmin, @benkow_

[+++]          Added rules:          [+++]

Open:

2024293 - ET TROJAN Possible WannaCry DNS Lookup (trojan.rules)
2024294 - ET TROJAN Possible WannaCry DNS Lookup (trojan.rules)

Pro:

2826375 - ETPRO TROJAN DNS Query to Sage Domain (eho23d . net) (trojan.rules)
2826376 - ETPRO TROJAN DNS Query to Cerber Domain (1mqvsc . top) (trojan.rules)
2826377 - ETPRO TROJAN DNS Query to Cerber Domain (133chr . top) (trojan.rules)
2826378 - ETPRO TROJAN DNS Query to Cerber Domain (1hkjl3 . top) (trojan.rules)
2826379 - ETPRO TROJAN DNS Query to Cerber Domain (1jyhqc . top) (trojan.rules)
2826380 - ETPRO TROJAN DNS Query to Cerber Domain (1fgsmc . top) (trojan.rules)
2826381 - ETPRO TROJAN DNS Query to Cerber Domain (1fgsmc . top) (trojan.rules)
2826382 - ETPRO TROJAN DNS Query to Cerber Domain (12m58x . top) (trojan.rules)
2826383 - ETPRO TROJAN DNS Query to Cerber Domain (127axt . top) (trojan.rules)
2826384 - ETPRO TROJAN DNS Query to Cerber Domain (16nxpn . top) (trojan.rules)
2826385 - ETPRO TROJAN Cobalt Strike Malleable C2 OCSP Profile (trojan.rules)
2826386 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 102 (mobile_malware.rules)
2826387 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 103 (mobile_malware.rules)
2826388 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 104 (mobile_malware.rules)
2826389 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 105 (mobile_malware.rules)
2826390 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 106 (mobile_malware.rules)
2826391 - ETPRO TROJAN Zloader HTTP Checkin (trojan.rules)
2826392 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 107 (mobile_malware.rules)
2826393 - ETPRO CURRENT_EVENTS Evil Redirector Leading to EK Keitaro TDS May 15 2017 (current_events.rules)
2826394 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 108 (mobile_malware.rules)
2826395 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 109 (mobile_malware.rules)
2826396 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 110 (mobile_malware.rules)
2826397 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 111 (mobile_malware.rules)
2826398 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 112 (mobile_malware.rules)
2826399 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 113 (mobile_malware.rules)
 

Date: 
Monday, May 15, 2017 - 00:00