[***]            Summary:            [***]

1 new Open, 20 new Pro (1 + 19). MSIL/Murkios, Various Mobile.

[+++]          Added rules:          [+++]

Open:

2026743 - ET POLICY Observed Suspicious SSL Cert (External IP Lookup - ident .me) (policy.rules)

Pro:

2834085 - ETPRO MOBILE_MALWARE Android/SMSreg.AAH Device Info Exfil (mobile_malware.rules)
2834086 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 459 (mobile_malware.rules)
2834087 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.z Checkin 5 (mobile_malware.rules)
2834088 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Asacub.a Checkin 460 (mobile_malware.rules)
2834089 - ETPRO MOBILE_MALWARE Android.Adware.Agent.ZI CnC Beacon (mobile_malware.rules)
2834090 - ETPRO TROJAN MSIL/Murkios Bot CnC Checkin (trojan.rules)
2834091 - ETPRO POLICY SoCo Remote Support Client Session Email Notification (policy.rules)
2834092 - ETPRO POLICY SmartAssembly License Check (policy.rules)
2834093 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-26 1) (trojan.rules)
2834094 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-26 2) (trojan.rules)
2834095 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-26 3) (trojan.rules)
2834096 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-26 4) (trojan.rules)
2834097 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-26 5) (trojan.rules)
2834098 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-26 6) (trojan.rules)
2834099 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-26 7) (trojan.rules)
2834100 - ETPRO TROJAN MSIL/Murkios Bot CnC Requesting Port (trojan.rules)
2834101 - ETPRO TROJAN MSIL/Murkios Bot CnC Keep-Alive (trojan.rules)
2834102 - ETPRO TROJAN Observed Malicious SSL Cert (MalDoc DL 2018-12-26) (trojan.rules)
2834103 - ETPRO TROJAN Observed Malicious SSL Cert (MalDoc DL 2018-12-26 2) (trojan.rules)

Date: 
Tuesday, December 25, 2018 - 22:00