[***]            Summary:            [***]

17 new Pro. SteamStealerRAT, MSIL/Criador, CVE-2018-15982, Various Mobile.

[+++]          Added rules:          [+++]

2833832 - ETPRO MOBILE_MALWARE Trojan-SMS.AndroidOS.Opfake.a Checkin 16 (mobile_malware.rules)
2833833 - ETPRO MOBILE_MALWARE Android/Autoins.C CnC Beacon (mobile_malware.rules)
2833834 - ETPRO MOBILE_MALWARE Android/Hiddad.OK Checkin 2 (mobile_malware.rules)
2833835 - ETPRO MOBILE_MALWARE Anubis Android Loader / BankBot Checkin 20 (mobile_malware.rules)
2833836 - ETPRO TROJAN Known Malicious Ethereum Traffic (trojan.rules)
2833837 - ETPRO TROJAN Known Malicious Ethereum Traffic (trojan.rules)
2833838 - ETPRO TROJAN Known Malicious Ethereum Traffic (trojan.rules)
2833839 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-06 1) (trojan.rules)
2833840 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-06 2) (trojan.rules)
2833841 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-06 3) (trojan.rules)
2833842 - ETPRO TROJAN Win32/SteamStealerRAT CnC Checkin (trojan.rules)
2833843 - ETPRO TROJAN Observed Malicious SSL Cert (Cobalt Group CnC) (trojan.rules)
2833844 - ETPRO TROJAN MSIL/Criador Bot CnC Checkin (trojan.rules)
2833845 - ETPRO TROJAN Golroted/Hawkeye Keylogger SMTP Subject Line (trojan.rules)
2833846 - ETPRO TROJAN Win32/Remcos RAT Checkin 81 (trojan.rules)
2833847 - ETPRO TROJAN Win32/Remcos RAT Checkin 82 (trojan.rules)
2833848 - ETPRO EXPLOIT Possible Adobe Flash Use-After-Free FWS Inbound (CVE-2018-15982) (exploit.rules)

[///]     Modified active rules:     [///]

2023611 - ET TROJAN Backdoor family PCRat/Gh0st CnC traffic (OUTBOUND) 107 (trojan.rules)
2833765 - ETPRO TROJAN OilRig BONDUPDATER C2 via DNS (trojan.rules)

Date: 
Wednesday, December 5, 2018 - 22:00