Daily Ruleset Update Summary 2017/12/26

[***]            Summary:            [***]

1 new Open, 15 new Pro (1 + 14). MSIL/MinerLoader, Win32/Genasep.A, MSIL/Elm0d RAT, Various Phishing.

[+++]          Added rules:          [+++]

Open:

2025173 - ET CURRENT_EVENTS Paypal Phishing Landing 2017-12-26 (current_events.rules)

Pro:

2829060 - ETPRO TROJAN Win32/Genasep.A CnC Activity (trojan.rules)
2829061 - ETPRO CURRENT_EVENTS Successful Apple Phish 2017-12-22 (current_events.rules)
2829062 - ETPRO TROJAN Observed Malicious SSL Cert (Ursnif CnC) (trojan.rules)
2829063 - ETPRO TROJAN MSIL/MinerLoader CnC Checkin (trojan.rules)
2829064 - ETPRO TROJAN MSIL/MinerLoader CnC Keep-Alive (trojan.rules)
2829065 - ETPRO TROJAN XtremeRAT Checkin (trojan.rules)
2829066 - ETPRO TROJAN Observed Request for xmr.exe in - Coinminer Download (trojan.rules)
2829067 - ETPRO TROJAN XtremeRAT/Xtrat/Xrat CnC M1 (trojan.rules)
2829068 - ETPRO TROJAN MSIL/Elm0d RAT CnC Activity (trojan.rules)
2829069 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2017-12-26 (current_events.rules)
2829070 - ETPRO CURRENT_EVENTS Successful Netflix Phish 2017-12-26 (current_events.rules)
2829071 - ETPRO CURRENT_EVENTS Apple Phishing Landing (Captcha Check) 2017-12-26 (current_events.rules)
2829072 - ETPRO CURRENT_EVENTS Successful Apple Phish 2017-12-26 (current_events.rules)
2829073 - ETPRO POLICY External IP Lookup Domain (iplogger .ru in DNS lookup) (policy.rules)

[///]     Modified active rules:     [///]

2809038 - ETPRO MALWARE PUP Win32/SpeedingUpMyPC Checkin (malware.rules)
2829038 - ETPRO TROJAN Bitcoin Miner Known Malicious Basic Auth (NDF5eWJUWEZnYk...) (trojan.rules)

Date: 
Tuesday, December 26, 2017 - 00:00