[***]            Summary:            [***]

19 new Pro. WildPositron Variant, CVE-2018-8174, PhanapikalBot, APT32 CnC Domain.

[+++]          Added rules:          [+++]

2833523 - ETPRO TROJAN WildPositron Variant CnC Beacon (trojan.rules)
2833524 - ETPRO WEB_CLIENT Possible CVE-2018-8174 VBScript - Common Value (web_client.rules)
2833525 - ETPRO TROJAN Win32/Snowman CnC Beacon (trojan.rules)
2833526 - ETPRO TROJAN MSIL/Kryptik.QAY CnC Activity (trojan.rules)
2833527 - ETPRO TROJAN Zyro FTP Stealer Reporting System Details to CnC (trojan.rules)
2833528 - ETPRO TROJAN PhanapikalBot CnC Checkin (trojan.rules)
2833529 - ETPRO TROJAN PhanapikalBot Requesting Additional Encrypted Modules (trojan.rules)
2833530 - ETPRO TROJAN PhanapikalBot Requesting Encrypted Module Config (trojan.rules)
2833531 - ETPRO TROJAN APT32 CnC Domain Observed in SNI (trojan.rules)
2833532 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 1) (trojan.rules)
2833533 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 2) (trojan.rules)
2833534 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 3) (trojan.rules)
2833535 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 4) (trojan.rules)
2833536 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 5) (trojan.rules)
2833537 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 6) (trojan.rules)
2833538 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 7) (trojan.rules)
2833539 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 8) (trojan.rules)
2833540 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 9) (trojan.rules)
2833541 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-11-12 10) (trojan.rules)

[///]     Modified active rules:     [///]

2016922 - ET TROJAN Backdoor family PCRat/Gh0st CnC traffic (trojan.rules)
2026525 - ET TROJAN Win32/BlackCarat XORed (0x77) CnC Checkin (trojan.rules)
2833187 - ETPRO TROJAN Win32/Metamorfo CnC Checkin (trojan.rules)

Date:
Summary title:
19 new Pro. WildPositron Variant, CVE-2018-8174, PhanapikalBot, APT32 CnC Domain.