[***]            Summary:            [***]

1 new OPEN, 19 new PRO (1 + 18). MassLogger, MeridianX, Mirai, CVE-2020-9490, Various Phishing.

Many rules in the Suricata 5 ruleset have been updated with Suricata 5 rule syntax/keywords. A complete list of rules that were  changed can be found via the changelog here:
https://rules.emergingthreats.net/changelogs/suricata-5.0-enhanced.open.2020-09-03T21:31:37.txt

Please share issues, feedback, and requests at https://feedback.emergingthreats.net/feedback

[+++]          Added rules:          [+++]

Open:

  2030830 - ET EXPLOIT Apache2 Memory Corruption Inbound (CVE-2020-9490)
(exploit.rules)

Pro:

  2844260 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2020-09-03 1) (trojan.rules)
  2844261 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2020-09-03 2) (trojan.rules)
  2844262 - ETPRO TROJAN MSIL/Spy.Agent.CXE Variant CnC Activity
(trojan.rules)
  2844263 - ETPRO TROJAN Win32/TrojanDownloader.VB.QZK Variant CnC Activity
(trojan.rules)
  2844264 - ETPRO TROJAN ELF/Mirai User-Agent Observed (Outbound)
(trojan.rules)
  2844265 - ETPRO SCAN ELF/Mirai User-Agent Observed (Inbound) (scan.rules)
  2844266 - ETPRO TROJAN ELF/Mirai User-Agent Observed (Outbound)
(trojan.rules)
  2844267 - ETPRO SCAN ELF/Mirai User-Agent Observed (Inbound) (scan.rules)
  2844268 - ETPRO CURRENT_EVENTS Successful ABSA Phish 2020-09-03
(current_events.rules)
  2844269 - ETPRO CURRENT_EVENTS Successful DHL Phish 2020-09-03
(current_events.rules)
  2844270 - ETPRO CURRENT_EVENTS Successful American Express Phish
2020-09-03 (current_events.rules)
  2844271 - ETPRO CURRENT_EVENTS Successful American Express Phish
2020-09-03 (current_events.rules)
  2844272 - ETPRO CURRENT_EVENTS Successful American Express Phish
2020-09-03 (current_events.rules)
  2844273 - ETPRO CURRENT_EVENTS Possible Successful Generic Phish (set)
2020-09-03 (current_events.rules)
  2844274 - ETPRO CURRENT_EVENTS Successful Generic Phish 2020-09-03
(current_events.rules)
  2844275 - ETPRO TROJAN MassLogger Client Exfil via FTP M2 (trojan.rules)
  2844276 - ETPRO TROJAN MeridianX Stealer Exfil Attempt (trojan.rules)
  2844277 - ETPRO TROJAN Observed Malicious SSL Cert (AZORult CnC)
(trojan.rules)

Date:
Summary title:
1 new OPEN, 19 new PRO (1 + 18). MassLogger, MeridianX, Mirai, CVE-2020-9490, Various Phishing.