Daily Ruleset Update Summary 2018/03/15

[***]            Summary:            [***]

5 new Pro. MSIL/GhostFlower, Android/Arukas.A!tr, Zeus Panda CnC SSL Cert.

[+++]          Added rules:          [+++]

2830009 - ETPRO TROJAN Observed Malicious SSL Cert (Zeus Panda CnC) (trojan.rules)
2830010 - ETPRO TROJAN MSIL/GhostFlower Ransomware CnC Checkin (trojan.rules)
2830011 - ETPRO MOBILE_MALWARE Android/Arukas.A!tr Checkin 2 (mobile_malware.rules)
2830012 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-03-15 1) (trojan.rules)
2830013 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-03-15 2) (trojan.rules)

[///]     Modified active rules:     [///]

2025218 - ET CURRENT_EVENTS Malicious Chrome Extension Domain Request (stickies .pro in DNS Lookup) (current_events.rules)
2025412 - ET TROJAN [PTsecurity] Fake SSL Certificate Observed (Yahoo) (trojan.rules)
2025413 - ET TROJAN [PTsecurity] Fake SSL Certificate Observed (Oracle America) (trojan.rules)
2025414 - ET TROJAN [PTsecurity] Fake SSL Certificate Observed (Google) (trojan.rules)
2025415 - ET TROJAN [PTsecurity] Fake SSL Certificate Observed (Oracle canada) (trojan.rules)
2025429 - ET TROJAN Arkei Stealer IP Lookup (trojan.rules)
2025430 - ET TROJAN Arkei Stealer Config Download Request (trojan.rules)
2829969 - ETPRO EXPLOIT Adobe Flash Type Confusion (CVE-2018-4920) (exploit.rules)
2829970 - ETPRO EXPLOIT Adobe Flash Use After Free (CVE-2018-4919) (exploit.rules)

[---]  Disabled and modified rules:  [---]

2015758 - ET CURRENT_EVENTS g01pack Exploit Kit Landing Page (2) (current_events.rules)

Date: 
Thursday, March 15, 2018 - 00:00