Daily Ruleset Update Summary 2017/06/14

[***]            Summary:            [***]

2 new Open, 11 new Pro (2 + 9). DPRK_HIDDEN_COBRA, Ishtar Ransomware, Various Phishing, Various Mobile.

[+++]          Added rules:          [+++]

Open:

2024382 - ET TROJAN DPRK_HIDDEN_COBRA_DDoS_Handshake Success (trojan.rules)
2024383 - ET TROJAN DPRK_HIDDEN_COBRA_Botnet_C2_Host_Beacon (trojan.rules)

Pro:

2826742 - ETPRO CURRENT_EVENTS Successful Charles Schwab Client Center Phish M1 Jun 132017 (current_events.rules)
2826743 - ETPRO CURRENT_EVENTS Successful Charles Schwab Client Center Phish M2 Jun 132017 (current_events.rules)
2826744 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 149 (mobile_malware.rules)
2826745 - ETPRO TROJAN Ishtar Ransomware Checkin (trojan.rules)
2826746 - ETPRO TROJAN Win32.Swisyn.fohg Checkin (trojan.rules)
2826747 - ETPRO MOBILE_MALWARE Android.Trojan.FakeApp.AS Checkin (mobile_malware.rules)
2826748 - ETPRO MOBILE_MALWARE Android.Trojan.FakeApp.AS CnC Beacon (mobile_malware.rules)
2826749 - ETPRO CURRENT_EVENTS Successful Paypal Phish M1 Jun 142017 (current_events.rules)
2826750 - ETPRO CURRENT_EVENTS Successful Paypal Phish M2 Jun 142017 (current_events.rules)

[///]     Modified active rules:     [///]

2024379 - ET POLICY Outdated Flash Version M2 (policy.rules)
2820951 - ETPRO MOBILE_MALWARE Android/TrojanDropper.Shedun.V Checkin 3 (mobile_malware.rules)
2826320 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 2 (mobile_malware.rules)
2826321 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 3 (mobile_malware.rules)
2826323 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 4 (mobile_malware.rules)
2826326 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot CnC Beacon (mobile_malware.rules)
2826356 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 5 (mobile_malware.rules)
2826362 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 6 (mobile_malware.rules)
2826505 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 7 (mobile_malware.rules)
2826506 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 8 (mobile_malware.rules)
2826677 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 9 (mobile_malware.rules)
2826678 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 10 (mobile_malware.rules)
2826705 - ETPRO TROJAN Win32/Neshta.A Checkin (trojan.rules)
2826720 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 11 (mobile_malware.rules)

[---]         Disabled rules:        [---]

2826175 - ETPRO TROJAN Possible Hajime Beacon (trojan.rules)


[---]         Removed rules:         [---]

2826740 - ETPRO DOS SMB2 CPU exhaustion (CVE-2009-2526) (dos.rules)

Date: 
Wednesday, June 14, 2017 - 00:00