Daily Ruleset Update Summary 2017/06/20

[***]            Summary:            [***]

3 new Open, 18 new Pro (3 + 15). DragonOK KHRAT, Erebus Domains, BeEF, Various Mobile.

Thanks: @BleepinComputer

[+++]          Added rules:          [+++]

Open:

2024416 - ET WEB_CLIENT BeEF HTTP Get Outbound (web_client.rules)
2024417 - ET TROJAN Fake Windows Scam ScreenLocker (trojan.rules)
2024418 - ET TROJAN DragonOK KHRAT Downloader Receiving Payload (trojan.rules)

Pro:

2826800 - ETPRO TROJAN Win32.Dinwod CnC Beacon (trojan.rules)
2826801 - ETPRO TROJAN MSIL/Unk.Stealer CnC Checkin (trojan.rules)
2826802 - ETPRO TROJAN MSIL/IRCBot.BH CnC Beacon (trojan.rules)
2826803 - ETPRO MOBILE_MALWARE Android/Triada.DZ Checkin (mobile_malware.rules)
2826804 - ETPRO MOBILE_MALWARE Android/Triada.DZ Checkin 2 (mobile_malware.rules)
2826805 - ETPRO TROJAN Win32/CoinMiner.AGW Downloader Requesting Payload (trojan.rules)
2826806 - ETPRO MOBILE_MALWARE Trojan-Dropper.AndroidOS.Triada.d Checkin 3 (mobile_malware.rules)
2826807 - ETPRO MOBILE_MALWARE Trojan-Dropper.AndroidOS.Triada.d Checkin 4 (mobile_malware.rules)
2826808 - ETPRO MOBILE_MALWARE Android.Trojan.Triada.EY Checkin (mobile_malware.rules)
2826809 - ETPRO MOBILE_MALWARE Android.Trojan.Triada.EY Checkin 2 (mobile_malware.rules)
2826810 - ETPRO TROJAN Mole Ransomware Onion Domain (trojan.rules)
2826811 - ETPRO TROJAN Erebus Ransomware Onion Domain (trojan.rules)
2826812 - ETPRO TROJAN Erebus Ransomware Onion Domain (trojan.rules)
2826813 - ETPRO EXPLOIT HP Printer Remote Code Execution Attempt (exploit.rules)
2826814 - ETPRO MOBILE_MALWARE Android.Trojan.SmsSpy.LP CnC Beacon (mobile_malware.rules)

[///]     Modified active rules:     [///]

2022893 - ET MALWARE MSIL/Adload.AT Beacon (malware.rules)
2024404 - ET EXPLOIT HP Printer Attempted Path Traversal via PJL (exploit.rules)

[---]         Disabled rules:        [---]

2816085 - ETPRO MALWARE MSIL/Adload.AT Beacon (malware.rules)

Date: 
Tuesday, June 20, 2017 - 00:00