[***] Summary: [***]
2 new Pro rules. 1 dupe removed. Lyposit Ransomware sig updated to catch variant/cousin seen in FlimKit.
[+++] Added rules: [+++]
2806376 – ETPRO TROJAN Trojan-Spy.Win32.Ambler Checkin (trojan.rules)
2806377 – ETPRO TROJAN TrojanDownloader Win32/Waledac.C .exe download (trojan.rules)
[///] Modified active rules: [///]
2015957 – ET TROJAN Lyposit Ransomware Checkin 1 (trojan.rules)
[---] Disabled and modified rules: [---]
2016188 – ET CURRENT_EVENTS Potential Zeus Binary Download – Specific PE Sections Structure (current_events.rules)
[---] Removed rules: [---]
2806348 – ETPRO TROJAN Trojan.Win32.Swisyn.vlj Checkin (trojan.rules)