Daily Ruleset Update Summary
Daily Ruleset Update Summary 2021/01/22

[***] Summary: [***]

1 new OPEN, 22 new PRO (1 + 21). CVE-2021-3007, Hash - Dridex CnC,
Win32/Spy.Banker.AEKU, DTLoader Variant, RATs, CoinMiners, Various PHISH.

Please share issues, feedback, and requests at
https://feedback.emergingthreats.net/feedback

[+++] Added rules: [+++]

Open:

2031536 - ET EXPLOIT Possible Zend Framework Exploit (CVE-2021-3007)
(exploit.rules)

Pro:

2846685 - ETPRO JA3 Hash - Dridex CnC (ja3.rules)
2846686 - ETPRO MALWARE Win32/Softcnapp Install Activity (malware.rules)
2846687 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-01-22 1) (trojan.rules)
2846688 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-01-22 2) (trojan.rules)
2846689 - ETPRO CURRENT_EVENTS Successful La Poste Credit Card
Information Phish 2021-01-22 (current_events.rules)
2846690 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information
Phish 2021-01-22 (current_events.rules)
2846691 - ETPRO CURRENT_EVENTS Successful Coinbase Phish 2021-01-22
(current_events.rules)
2846692 - ETPRO CURRENT_EVENTS Successful Facebook Phish 2021-01-22
(current_events.rules)
2846693 - ETPRO CURRENT_EVENTS Successful Spark NZ Phish 2021-01-22
(current_events.rules)
2846694 - ETPRO CURRENT_EVENTS Successful Sony Entertainment Network
Phish 2021-01-22 (current_events.rules)
2846695 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2021-01-22
(current_events.rules)
2846696 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2021-01-22
(current_events.rules)
2846697 - ETPRO CURRENT_EVENTS Successful Paxful Phish 2021-01-22
(current_events.rules)
2846698 - ETPRO CURRENT_EVENTS Successful WeTransfer Phish 2021-01-22
(current_events.rules)
2846699 - ETPRO CURRENT_EVENTS Successful Skype Phish 2021-01-22
(current_events.rules)
2846700 - ETPRO CURRENT_EVENTS Successful ASB Phish 2021-01-22
(current_events.rules)
2846701 - ETPRO TROJAN Win32/Spy.Banker.AEKU Variant CnC Host Checkin
(trojan.rules)
2846702 - ETPRO TROJAN Unk.Win32/Packed.Themida.HFK Downloader Activity
(trojan.rules)
2846703 - ETPRO TROJAN Win32/Unk Cookie Stealer CnC Activity
(trojan.rules)
2846704 - ETPRO TROJAN Win32/TrojanDownloader.Delf.CYA Variant Payload
Request (trojan.rules)
2846705 - ETPRO TROJAN Win32/Remcos RAT Checkin 659 (trojan.rules)
2846706 - ETPRO TROJAN DTLoader Variant Activity (trojan.rules)

Date:
Summary title:
1 new OPEN, 22 new PRO (1 + 21). CVE-2021-3007, Hash - Dridex CnC, Win32/Spy.Banker.AEKU, DTLoader Variant, RATs, CoinMiners, Various PHISH.