[***] Summary: [***]
2 new Open, 27 new Pro (2 + 25). Various Phishing, H-worm, Various CoinMiners.
Happy New Year from the Emerging Threats team!
[+++] Added rules: [+++]
Open:
2017994 - ET TROJAN Worm.VBS Dunihi/Houdini/H-Worm Checkin UA (trojan.rules)
2026746 - ET INFO Suspicious Fake Login - Possible Phishing - 2018-12-31 (info.rules)
Pro:
2834138 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-31 1) (trojan.rules)
2834139 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-31 2) (trojan.rules)
2834140 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-31 3) (trojan.rules)
2834141 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-31 4) (trojan.rules)
2834142 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-12-31 5) (trojan.rules)
2834143 - ETPRO TROJAN Request for Known Coinminer Binary via FTP (X32) (trojan.rules)
2834144 - ETPRO MALWARE Win32/Unwaders.C Checkin (malware.rules)
2834145 - ETPRO TROJAN Observed Malicious SSL Cert (FakeAV CnC) (trojan.rules)
2834146 - ETPRO CURRENT_EVENTS Successful ING Phish 2018-12-31 (current_events.rules)
2834147 - ETPRO CURRENT_EVENTS Successful Chase Phish 2018-12-31 (current_events.rules)
2834148 - ETPRO CURRENT_EVENTS Successful Linkedin Phish 2018-12-31 (current_events.rules)
2834149 - ETPRO CURRENT_EVENTS Successful Google Phish 2018-12-31 (current_events.rules)
2834150 - ETPRO CURRENT_EVENTS Successful CIBC Phish 2018-12-31 (current_events.rules)
2834151 - ETPRO CURRENT_EVENTS Successful Apple iCloud Phish 2018-12-31 (current_events.rules)
2834152 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2018-12-31 (current_events.rules)
2834153 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2018-12-31 (current_events.rules)
2834154 - ETPRO CURRENT_EVENTS Successful Amazon Phish 2018-12-31 (current_events.rules)
2834155 - ETPRO CURRENT_EVENTS Successful Amazon Phish 2018-12-31 (current_events.rules)
2834156 - ETPRO CURRENT_EVENTS Successful Amazon Phish 2018-12-31 (current_events.rules)
2834157 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2018-12-31 (current_events.rules)
2834158 - ETPRO CURRENT_EVENTS Successful Netflix Phish 2018-12-31 (current_events.rules)
2834159 - ETPRO CURRENT_EVENTS Successful Netflix Phish 2018-12-31 (current_events.rules)
2834160 - ETPRO CURRENT_EVENTS Successful M&T Bank Phish 2018-12-31 (current_events.rules)
2834161 - ETPRO CURRENT_EVENTS Successful Credit Card Information Phish 2018-12-31 (current_events.rules)
2834162 - ETPRO CURRENT_EVENTS Successful Yahoo Phish 2018-12-31 (current_events.rules)
[///] Modified active rules: [///]
2017516 - ET TROJAN Worm.VBS Dunihi/Houdini/H-Worm Checkin 1 (trojan.rules)
2833680 - ETPRO CURRENT_EVENTS Successful Microsoft Account Phish 2018-11-27 (current_events.rules)
2834044 - ETPRO CURRENT_EVENTS Successful RBC Phish 2018-12-20 (current_events.rules)
2834135 - ETPRO TROJAN Request for Known Coinminer Binary via FTP (X64) (trojan.rules)
[---] Removed rules: [---]
2017994 - ET CURRENT_EVENTS VBS.Dunihi Check-in UA (current_events.rules)