[***]            Summary:            [***]

17 new Pro. POX Variant, sLoad, Various Phish.

[+++]          Added rules:          [+++]

Pro:

2835502 - ETPRO MOBILE_MALWARE Trojan.Android.Boogr.etiiqz Contact Exfil via SMTP (mobile_malware.rules)
2835503 - ETPRO MOBILE_MALWARE Android-PUP/Iop.ae645 Reporting Infection via SMTP (mobile_malware.rules)
2835504 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2019-03-22 1) (trojan.rules)
2835505 - ETPRO CURRENT_EVENTS Successful Adobe Sendnow Phish 2019-03-22 (current_events.rules)
2835506 - ETPRO CURRENT_EVENTS Successful Godaddy Phish 2019-03-22 (current_events.rules)
2835507 - ETPRO CURRENT_EVENTS Successful Box Phish 2019-03-22 (current_events.rules)
2835508 - ETPRO CURRENT_EVENTS Successful Cox Phish 2019-03-22 (current_events.rules)
2835509 - ETPRO CURRENT_EVENTS Successful SunTrust Phish 2019-03-22 (current_events.rules)
2835510 - ETPRO CURRENT_EVENTS Successful Linkedin Phish 2019-03-22 (current_events.rules)
2835511 - ETPRO CURRENT_EVENTS Successful Amazon Phish 2019-03-22 (current_events.rules)
2835512 - ETPRO CURRENT_EVENTS Successful Citrix Sharefile Phish 2019-03-22 (current_events.rules)
2835513 - ETPRO TROJAN Win32/Spy.Agent.POX Variant CnC (trojan.rules)
2835514 - ETPRO TROJAN Win32/Unk CnC Checkin (trojan.rules)
2835515 - ETPRO TROJAN sLoad CnC Domain in SNI (trojan.rules)
2835516 - ETPRO TROJAN sLoad CnC Domain in SNI (trojan.rules)
2835517 - ETPRO TROJAN sLoad CnC Domain in SNI (trojan.rules)
2835518 - ETPRO TROJAN Observed Malicious SSL Cert (Maldoc CnC) (trojan.rules)

[///]     Modified active rules:     [///]

2025637 - ET TROJAN Remcos RAT Checkin 23 (trojan.rules)
2027102 - ET CURRENT_EVENTS Inbound JS Downloader Using Array Push Obfuscation (current_events.rules)

Date: 
Thursday, March 21, 2019 - 22:00