Daily Ruleset Update Summary 2017/08/03

[***]            Summary:            [***]

1 new Open, 16 new Pro (15 + 1). Win32/TinyNuke, Various Phishing, Various Mobile.

Thanks: @attackdetection

Open:

2024513 - ET TROJAN [PTsecurity] Win32/TinyNuke Payload ACF40 Inbound (trojan.rules)

Pro:

2827380 - ETPRO CURRENT_EVENTS Successful Netflix Phish M1 Aug 03 2017 (current_events.rules)
2827381 - ETPRO CURRENT_EVENTS Successful Netflix Phish M2 Aug 03 2017 (current_events.rules)
2827382 - ETPRO CURRENT_EVENTS Successful Facebook Phish Aug 03 2017 (current_events.rules)
2827383 - ETPRO CURRENT_EVENTS Successful PNC Bank Phish Aug 03 2017 (current_events.rules)
2827384 - ETPRO CURRENT_EVENTS Possible Successful USAA/Generic Multi Step Phish Aug 03 2017 (current_events.rules)
2827385 - ETPRO CURRENT_EVENTS Successful Webmail Account Upgrade Phish Aug 03 2017 (current_events.rules)
2827386 - ETPRO CURRENT_EVENTS Successful Generic Phish - Fake Loading Page Aug 03 2017 (current_events.rules)
2827387 - ETPRO CURRENT_EVENTS Successful International Card Services Phish M1 Aug 03 2017 (current_events.rules)
2827388 - ETPRO CURRENT_EVENTS Successful International Card Services Phish M2 Aug 03 2017 (current_events.rules)
2827389 - ETPRO MOBILE_MALWARE Android/Agent.US Checkin (mobile_malware.rules)
2827390 - ETPRO TROJAN GlobeImposter Ransomware Onion Domain (trojan.rules)
2827391 - ETPRO TROJAN MSIL/FriendlyBot CnC Checkin (trojan.rules)
2827392 - ETPRO MOBILE_MALWARE SMS-Flooder.AndroidOS.Agent.l CnC Beacon (mobile_malware.rules)
2827393 - ETPRO CURRENT_EVENTS Successful Norton Email Scan Phish M1 Aug 03 2017 (current_events.rules)
2827394 - ETPRO CURRENT_EVENTS Successful Norton Email Scan Phish M2 Aug 03 2017 (current_events.rules)

[///]     Modified active rules:     [///]

2024511 - ET DOS SMBLoris NBSS Length Mem Exhaustion Attempt (PoC Based) (dos.rules)
2024512 - ET TROJAN Observed Malicious Domain SSL Cert in SNI (JS_POWMET) (trojan.rules)
2824093 - ETPRO CURRENT_EVENTS Possible Successful Outlook Web App Phish Dec 27 2016 (current_events.rules)

[---]         Disabled rules:        [---]

2815295 - ETPRO CURRENT_EVENTS Successful Apple Phish Dec 9 M2 (current_events.rules)

Date: 
Thursday, August 3, 2017 - 00:00