[***] Summary: [***]
0 new Open, 22 new Pro (0 + 22). Inception Group, Keitaro, Backdoor.AndroidOS.Agent
[***] Results from Oinkmaster started Wed Sep 11 19:47:13 2019 [***]
[+++] Added rules: [+++]
Pro:
2838410 - ETPRO MOBILE_MALWARE Backdoor.AndroidOS.Agent.eb Checkin (mobile_malware.rules)
2838411 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2019-09-11) (current_events.rules)
2838412 - ETPRO TROJAN Win32/Get2 Downloader CnC Checkin (trojan.rules)
2838413 - ETPRO TROJAN Observed Malicious SSL Cert (MalDoc DL 2019-09-11 2) (trojan.rules)
2838414 - ETPRO TROJAN Win32/Unk.Macadbio CnC Activity (trojan.rules)
2838415 - ETPRO TROJAN Hex Encoded Wide EXE/DLL within HTML pre tag Inbound (trojan.rules)
2838416 - ETPRO TROJAN Inception Group - POWERSHOWER CnC Checkin (trojan.rules)
2838417 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838418 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838419 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838420 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838421 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838422 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838423 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838424 - ETPRO TROJAN Inception Group CnC Observed in DNS Query (trojan.rules)
2838425 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC) (trojan.rules)
2838426 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC) (trojan.rules)
2838427 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC) (trojan.rules)
2838428 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC) (trojan.rules)
2838429 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC) (trojan.rules)
2838430 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC) (trojan.rules)
2838431 - ETPRO WEB_CLIENT Evil Keitaro Set-Cookie Inbound (a7065) (web_client.rules)
[///] Modified active rules: [///]
2836638 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC 2019-06-04) (trojan.rules)
2836843 - ETPRO TROJAN Observed Malicious SSL Cert (Inception Group CnC 2019-06-14) (trojan.rules)