Weekly Detection Rule (YARA and Snort) Information – Week 4, October 2024
The following is the information on Yara and Snort rules (week 4, October 2024) collected and shared by the AhnLab TIP service.
- 0 YARA Rules
- 8 Snort Rules
| Detection name | Source |
|---|---|
| ET CURRENT_EVENTS Javascript Browser Fingerprinting POST Request | https://rules.emergingthreatspro.com/open/ |
| ET TROJAN Suspected PrivateLoader CnC Checkin – Server Response | https://rules.emergingthreatspro.com/open/ |
| ET EXPLOIT Ivanti Cloud Services Appliance Path Traversal Exploit Attempt (CVE-2024-8190) | https://rules.emergingthreatspro.com/open/ |
| ET TROJAN BumbleBee Loader CnC Checkin | https://rules.emergingthreatspro.com/open/ |
| ET TROJAN BumbleBee Loader CnC Server Response | https://rules.emergingthreatspro.com/open/ |
| ET EXPLOIT Fortinet FGFM Arbitrary Code Execution via Externally-Controlled Format String (CVE-2024-23113) | https://rules.emergingthreatspro.com/open/ |
| ET TROJAN Lumma Stealer Related Fake Captcha Page Inbound M3 | https://rules.emergingthreatspro.com/open/ |
| ET WEB_SPECIFIC_APPS D-LINK DIR-845L Information Disclosure Attempt (CVE-2024-33113) | https://rules.emergingthreatspro.com/open/ |
