[***]            Summary:            [***]

3 new Open, 30 new Pro (2 + 27). Win32/Banload.Downloader, MSIL.StillerBot, Various Phishing, Various Mobile.

[+++]          Added rules:          [+++]

Open:

2026528 - ET TROJAN Win32/Banload.Downloader Variant CnC Check-in (trojan.rules)
2026529 - ET CURRENT_EVENTS Successful Fedex/DHL Phish (set) 2018-10-22 (current_events.rules)
2026530 - ET CURRENT_EVENTS Successful Generic Phish (set) 2018-10-22 (current_events.rules)

Pro:

2833214 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.z Checkin (mobile_malware.rules)
2833215 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.z Checkin 2 (mobile_malware.rules)
2833216 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.z Checkin 3 (mobile_malware.rules)
2833217 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 440 (mobile_malware.rules)
2833218 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 441 (mobile_malware.rules)
2833219 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 442 (mobile_malware.rules)
2833220 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 443 (mobile_malware.rules)
2833221 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 444 (mobile_malware.rules)
2833222 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 445 (mobile_malware.rules)
2833223 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 446 (mobile_malware.rules)
2833224 - ETPRO TROJAN MSIL.StillerBot Checkin (trojan.rules)
2833225 - ETPRO TROJAN MSIL.StillerBot System Info Exfil (trojan.rules)
2833226 - ETPRO TROJAN MSIL.StillerBot UA (trojan.rules)
2833227 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 1) (trojan.rules)
2833228 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 2) (trojan.rules)
2833229 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 3) (trojan.rules)
2833230 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 4) (trojan.rules)
2833231 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 5) (trojan.rules)
2833232 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 6) (trojan.rules)
2833233 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 7) (trojan.rules)
2833234 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-10-22 8) (trojan.rules)
2833235 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2018-10-22) (current_events.rules)
2833236 - ETPRO CURRENT_EVENTS Successful Fedex/DHL Phish 2018-10-22 (current_events.rules)
2833237 - ETPRO CURRENT_EVENTS Successful Ourtime Phish 2018-10-22 (current_events.rules)
2833238 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Phish 2018-10-22 (current_events.rules)
2833239 - ETPRO CURRENT_EVENTS Successful Google Accounts Phish 2018-10-22 (current_events.rules)
2833240 - ETPRO CURRENT_EVENTS Successful Apple Phish 2018-10-22 (current_events.rules)

[///]     Modified active rules:     [///]

2026521 - ET USER_AGENTS Suspicious User-Agent (Windows 10) (user_agents.rules)
2833186 - ETPRO TROJAN Observed Malicious SSL Cert (Zeus Panda Banker CnC) (trojan.rules)

[---]         Removed rules:         [---]

2829593 - ETPRO TROJAN Win32/Banload.Downloader Variant CnC Check-in (trojan.rules)

Date: 
Monday, October 22, 2018 - 00:00