Search

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1009490* - Block Administrative Share - 1 (ATT&CK T1077,T1105) 1005293* - Prevent Windows Administrator User Login Over SMB (ATT&CK T1...

* indicates a new version of an existing rule Deep Packet Inspection Rules: HP Intelligent Management Center IMC Syslog Daemon 1008505 - HPE Intelligent Management Center (iMC) Remote Code Execution Vulnerability (CVE-2017-58...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Port Mapper FTP Client 1009558 - Remote File Copy Over FTP Suspicious Client Ransomware Activity 1007581* - Ransomware Lectool 1007711* - Ransomware X...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Directory Server LDAP 1011008* - OpenLDAP Integer Underflow Vulnerability (CVE-2020-36221) Oracle E-Business Suite Web Interface 1010999* - Oracle E-Bus...

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to a website to send and receive information.

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to Internet Relay Chat (IRC) servers. It joins an Internet Relay Chat (IRC) channel. It perf...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DHCP Client 1009597 - Microsoft Windows DHCP Client Remote Code Execution Vulnerability (CVE-2019-0726) DHCP Server 1009542 - Microsoft Windows DHCP Se...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Arcserve Unified Data Protection 1012019 - Arcserve Unified Data Protection Denial of Service Vulnerability (CVE-2024-0801) 1011972* - Arcserve Unifie...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Apache Storm Nimbus 1011236* - Apache Storm Command Injection Vulnerability (CVE-2021-38294) Directory Server LDAP 1011246 - Microsoft Windows Acti...

This new Mirai variant uses a total of 13 different exploits, almost all of which have been used in previous Mirai-related attacks. It has backdoor and distributed denial-of-service (DDoS) capabilities. This Backdoor arrives on a system as a file dr...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008647* - Microsoft Windows Search Information Disclosure Vulnerability (CVE-2017-8544) Microsoft Office 1009853* - Microsoft Excel Re...

* indicates a new version of an existing rule Deep Packet Inspection Rules: CentOS Web Panel 1011900* - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42120) Jenkins Remoting 1011976* - Jenkin...

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

* indicates a new version of an existing rule Deep Packet Inspection Rules: Advanced Message Queuing Protocol (AMQP) 1012050* - SolarWinds Access Rights Manager Remote Code Execution Vulnerability (CVE-2023-40057 & CVE-2024...

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be downloaded from remote sites by other malware.

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

Adobe Flash Player allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bo...