[***] Summary: [***]

0 new OPEN, 32 new PRO (0 + 32). AsyncRAT, Win32/Adware.FileTour.FEG,
Colbalt Strike, and VARIOUS PHISHING

Please share issues, feedback, and requests at
https://feedback.emergingthreats.net/feedback

[+++] Added rules: [+++]

Pro:

2847144 - ETPRO TROJAN Observed Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847145 - ETPRO TROJAN Observed Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847146 - ETPRO TROJAN Observed Malicious SSL Cert (OrcusRAT)
(trojan.rules)
2847147 - ETPRO TROJAN Observed Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847148 - ETPRO TROJAN Observed Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847149 - ETPRO TROJAN Observed Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847150 - ETPRO TROJAN Observed Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847151 - ETPRO TROJAN Observed Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847152 - ETPRO TROJAN Observed Possible Malicious SSL Cert (AsyncRAT)
(trojan.rules)
2847153 - ETPRO TROJAN Win32/Farfli.RSK!MTB CnC Checkin M2 (trojan.rules)
2847154 - ETPRO TROJAN ELF/Mirari Variant CnC Checkin (trojan.rules)
2847155 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-02-16 1) (trojan.rules)
2847156 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-02-16 2) (trojan.rules)
2847157 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-02-16 3) (trojan.rules)
2847158 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-02-16 4) (trojan.rules)
2847159 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-02-16 5) (trojan.rules)
2847160 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-02-16 6) (trojan.rules)
2847161 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline
(2021-02-16 7) (trojan.rules)
2847162 - ETPRO CURRENT_EVENTS Successful Saudi Post Phish 2021-02-16
(current_events.rules)
2847163 - ETPRO CURRENT_EVENTS Successful Instagram Phish 2021-02-16
(current_events.rules)
2847164 - ETPRO CURRENT_EVENTS Successful Instagram Phish 2021-02-16
(current_events.rules)
2847165 - ETPRO CURRENT_EVENTS Successful Facebook Phish 2021-02-16
(current_events.rules)
2847166 - ETPRO CURRENT_EVENTS Successful Facebook Phish 2021-02-16
(current_events.rules)
2847167 - ETPRO CURRENT_EVENTS Successful Banque Nationale Phish
2021-02-16 (current_events.rules)
2847168 - ETPRO CURRENT_EVENTS Successful Union Bank of the Philippines
Phish 2021-02-16 (current_events.rules)
2847169 - ETPRO CURRENT_EVENTS Successful BNP Paribas Phish 2021-02-16
(current_events.rules)
2847170 - ETPRO MALWARE Win32/Adware.FileTour.FEG (malware.rules)
2847171 - ETPRO TROJAN Cobalt Strike Malleable C2 (Wordpress Profile)
(trojan.rules)
2847172 - ETPRO TROJAN JS/TrojanDownloader.Agent.VZT CnC Activity M2
(trojan.rules)
2847173 - ETPRO TROJAN Win32/Remcos RAT Checkin 678 (trojan.rules)
2847174 - ETPRO CURRENT_EVENTS Successful HSBC Phish 2021-02-16
(current_events.rules)
2847175 - ETPRO TROJAN JS/TrojanDownloader.Agent.VZT CnC Activity M1
(trojan.rules)

[///] Modified active rules: [///]

2027092 - ET EXPLOIT Possible ZyXEL P660HN-T v1 RCE (exploit.rules)
2821683 - ETPRO SCADA DNP3 Cold Restart (scada.rules)
2821684 - ETPRO SCADA DNP3 Warm Restart (scada.rules)
2821685 - ETPRO SCADA DNP3 Write Time and Date (scada.rules)
2821686 - ETPRO SCADA DNP3 Stop Application (scada.rules)
2821687 - ETPRO SCADA DNP3 Enable Unsolicited Messages (scada.rules)
2847031 - ETPRO TROJAN Win32/Farfli.RSK!MTB CnC Checkin (trojan.rules)

Date:
Summary title:
0 new OPEN, 32 new PRO (0 + 32). AsyncRAT, Win32/Adware.FileTour.FEG, Colbalt Strike, and VARIOUS PHISHING