Daily Ruleset Update Summary
Daily Ruleset Update Summary 2019/01/25

[***]            Summary:            [***]

4 new Open, 21 new Pro (4 + 17). Razy, Lucifers RAT, Coinminers, Various Phishing.

[+++]          Added rules:          [+++]

Open:

2026855 - ET TROJAN W32.Razy Inject Domain in DNS Lookup (trojan.rules)
2026856 - ET TROJAN W32.Razy Inject Domain in DNS Lookup (trojan.rules)
2026857 - ET TROJAN W32.Razy Inject Domain in DNS Lookup (trojan.rules)
2026858 - ET TROJAN W32.Razy Inject Domain in DNS Lookup (trojan.rules)

Pro:

2834573 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-01-25 1) (trojan.rules)
2834574 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-01-25 2) (trojan.rules)
2834575 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-01-25 3) (trojan.rules)
2834576 - ETPRO TROJAN Win32.ControlTotal.ag SMTP Exfil (trojan.rules)
2834577 - ETPRO TROJAN GearBest Stealer CnC Activity (trojan.rules)
2834578 - ETPRO TROJAN TinyDeal Stealer CnC Activity (trojan.rules)
2834579 - ETPRO TROJAN Lucifers RAT CnC Checkin (trojan.rules)
2834580 - ETPRO TROJAN Lucifers RAT CnC Keep-Alive (Inbound) (trojan.rules)
2834581 - ETPRO TROJAN Lucifers RAT CnC Reporting Window (trojan.rules)
2834582 - ETPRO CURRENT_EVENTS Successful Verizon Phish 2019-01-25 (current_events.rules)
2834583 - ETPRO CURRENT_EVENTS Successful DHL Phish 2019-01-25 (current_events.rules)
2834584 - ETPRO CURRENT_EVENTS Successful Excel Online Phish 2019-01-25 (current_events.rules)
2834585 - ETPRO CURRENT_EVENTS Successful Argos Phish 2019-01-25 (current_events.rules)
2834586 - ETPRO CURRENT_EVENTS Successful ANZ Phish 2019-01-25 (current_events.rules)
2834587 - ETPRO CURRENT_EVENTS Successful Yahoo Phish 2019-01-25 (current_events.rules)
2834588 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-01-25 (current_events.rules)
2834589 - ETPRO CURRENT_EVENTS Successful Krungsri Online Phish 2019-01-25 (current_events.rules)

[///]     Modified active rules:     [///]

2832114 - ETPRO TROJAN Strongpity SSL/TLS Certificate Observed (trojan.rules)
2833960 - ETPRO TROJAN MSIL/PoweMuddy/PowerMud CnC Checkin (trojan.rules)
2834509 - ETPRO TROJAN Win32/Nambit RAT CnC Checkin (trojan.rules)

Date:
Summary title:
4 new Open, 21 new Pro (4 + 17). Razy, Lucifers RAT, Coinminers, Various Phishing.