Weekly Detection Rule (YARA and Snort) Information – Week 4, June 2024
The following is the information on Yara and Snort rules (week 4, June 2024) collected and shared by the AhnLab TIP service. 8 YARA Rules Detection name Description Source malware_cobaltstrike_workersdevloader Detects a CobaltStrike loader https://github.com/JPCERTCC/jpcert-yara Kimsuky_downloader_vbs Detects Kimsuky VBS file downloader Powershell https://github.com/JPCERTCC/jpcert-yara Kimsuky_PokDoc_ps1 Detects Kimsuky device information collection Powershell
CERT Report June 2024
01. Monthly Attack Trends Through Statistics Attack Type Statistics Attack type statistics lets you access statistical information on the Top 9 attack types that occurred in the previous month, including the progression of each attack in terms of increase and decrease, as well as attack progression by industry sector and
Weekly Detection Rule (YARA and Snort) Information – Week 3, June 2024
The following is the information on Yara and Snort rules (week 3, June 2024) collected and shared by the AhnLab TIP service. 10 YARA Rules Detection name Description Source PK_DBS_baglan Detects a phishing kit impersonating DBS bank https://github.com/t4d/PhishingKit-Yara-Rules PK_NatWest_admin Detects a phishing kit impersonating NatWest bank https://github.com/t4d/PhishingKit-Yara-Rules PK_Postbank_buff Detects a
Weekly Detection Rule (YARA and Snort) Information – Week 2, June 2024
The following is the information on Yara and Snort rules (week 2, June 2024) collected and shared by the AhnLab TIP service. 5 YARA Rules Detection Name Description Source PK_AdobePDF_nayfercrax Detects a phishing kit impersonating Adobe PDF Online https://github.com/t4d/PhishingKit-Yara-Rules PK_BankOfAmerica_xsmayer Detects a phishing kit impersonating Bank Of America https://github.com/t4d/PhishingKit-Yara-Rules PK_Ionos_keyword
Weekly Detection Rule (YARA and Snort) Information – Week 1, June 2024
The following is the information on Yara and Snort rules (week 1, June 2024) collected and shared by the AhnLab TIP service. 5 YARA Rules Detection Name Description Source PK_BankOfAmerica_akhatar Phishing Kit impersonating Bank Of America https://github.com/t4d/PhishingKit-Yara-Rules PK_BankOfAmerica_xbalti Phishing Kit impersonating Bank Of America https://github.com/t4d/PhishingKit-Yara-Rules PK_Citizens_premierghost Phishing Kit impersonating Citizens
CERT Report May 2024
01. MONTHLY ATTACK TRENDS THROUGH STATISTICS Attack Type Statistics Attack type statistics lets you access statistical information on the top 9 attack types that occurred in the previous month, including the progression of each attack in terms of increase and decrease, as well as attack progression by industry sector
CERT Report April 2024
01. MONTHLY ATTACK TRENDS THROUGH STATISTICS Attack Type Statistics Attack type statistics lets you access statistical information on the top nine attack types that occurred in the previous month, including the progression of each attack in terms of increase and decrease, as well as attack progression by industry
CERT Report March 2024
01. Monthly Attack TrendsThrough Statistics Attack Type Statistics Attack type statistics lets you access statistical information on the top nine attack types that occurred in the previous month, including the progression of each attack in terms of increase and decrease, as well as attack progression by industry sector
CERT Report February 2024
01. Monthly Attack Trends Through Statistics Attack Type Statistics In the attack type statistics, you can access statistical information on the top nine attack types that occurred in the previous month, including the progression of each attack in terms of increase and decrease, as well as the attack
CERT Report January 2024
01. Monthly Attack Trends Through Statistics Attack Type Statistics In the attack type statistics, you can access statistical information on the top nine attack types that occurred in the previous month, including the progression of each attack in terms of increase and decrease, as well as the attack
