IPS Signature Database Update
| Name | ips.sig | |||
| Version | 2.1.588 | |||
| StoneOS | StoneOS 5.0R4F3.1 or above | |||
| Release Date | 2024-12-23 | |||
| New Signature (71) |
Rule ID | Rule Name | StonesOS | Detail |
| 105538 | Ransomware Activity: Ransomware/Cerber Onion Domain Lookup | 5.5R5 or above | click for more information | |
| 332748 | Ransomware Activity: Observed TrumpHead Ransomware CnC Domain | 5.5R5 or above | click for more information | |
| 105561 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105356 | Ransomware Activity: TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain (iq3ahijcfeont3xx) | 5.5R5 or above | click for more information | |
| 105552 | Ransomware Activity: ABUSE.CH TorrentLocker Payment Domain (2ymh2gnnbg6pgq2r) | 5.5R5 or above | click for more information | |
| 332737 | Trojan Activity: Malicious SSL Cert (Magecart) | 5.5R5 or above | click for more information | |
| 105550 | Trojan Activity: Magecart CnC Domain Observed in DNS Query | 5.5R5 or above | click for more information | |
| 105572 | Trojan Activity: LYCEUM CnC Domain Observed in DNS Query | 5.5R5 or above | click for more information | |
| 105362 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105541 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 332754 | Ransomware Activity: Cerber Blockchain Query 2 | 5.5R5 or above | click for more information | |
| 338601 | Cleo Harmony 5.8.0.21 Arbitary File Read Vulnerability (CVE-2024-50623) | 5.0R4 or above | click for more information | |
| 105564 | Trojan Activity: FIN8 ShellTea CnC in DNS Query | 5.5R5 or above | click for more information | |
| 105546 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 714768 | Ransomware Activity: SUSPICIOUS PSHELL Downloader Primitives B644W Oct 19 2017 | 5.5R5 or above | click for more information | |
| 105568 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105359 | Trojan Activity: Glupteba CnC Domain in DNS Lookup | 5.5R5 or above | click for more information | |
| 105374 | Trojan Activity: FatDuke Domain Observed | 5.5R5 or above | click for more information | |
| 105537 | Ransomware Activity: Ransomware/Cerber Onion Domain Lookup | 5.5R5 or above | click for more information | |
| 332739 | Trojan Activity: MalDoc Exfil | 5.5R5 or above | click for more information | |
| ...... | ||||
| Updated Signature (1) |
Rule ID | Rule Name | StonesOS | Detail |
| 333368 | NPMJS gitlabhook Remote Command Execution Vulnerability (CVE-2019-5485) | 5.0R4 or above | Click here for more information | |