Index regenerated

82d414fb · Xumeiquer · be9e7d28 · 82d414fb · 82d414fb · 82d414fb
Commit 82d414fb authored Jan 12, 2017 by Xumeiquer
12 changed files
--- a/Antidebug_AntiVM_index.yar
+++ b/Antidebug_AntiVM_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Antidebug_AntiVM/antidebug_antivm.yar"
--- a/CVE_Rules_index.yar
+++ b/CVE_Rules_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./CVE_Rules/CVE-2013-0074.yar"
 include "./CVE_Rules/CVE-2015-5119.yar"

--- a/Crypto_index.yar
+++ b/Crypto_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Crypto/crypto_signatures.yar"
 include "./Crypto/base64.yar"
--- a/Exploit-Kits_index.yar
+++ b/Exploit-Kits_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Exploit-Kits/EK_Crimepack.yar"
 include "./Exploit-Kits/EK_Fragus.yar"

--- a/Malicious_Documents_index.yar
+++ b/Malicious_Documents_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Malicious_Documents/Maldoc_UserForm.yar"
 include "./Malicious_Documents/Maldoc_Dridex.yar"

--- a/Mobile_Malware_index.yar
+++ b/Mobile_Malware_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Mobile_Malware/Android_Backdoor.yar"
 include "./Mobile_Malware/Android_Dendroid_RAT.yar"
@@ -57,4 +57,5 @@ include "./Mobile_Malware/Android_Dogspectus.yar"
 include "./Mobile_Malware/Android_Malware_Towelroot.yar"
 include "./Mobile_Malware/Android_RuMMS.yar"
 include "./Mobile_Malware/Android_MazarBot_z.yar"
+include "./Mobile_Malware/Android_Switcher.yar"
 include "./Mobile_Malware/Android_DeathRing.yar"
--- a/Packers_index.yar
+++ b/Packers_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Packers/Javascript_exploit_and_obfuscation.yar"
 include "./Packers/peid.yar"

--- a/Webshells_index.yar
+++ b/Webshells_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Webshells/Wshell_ChineseSpam.yar"
 include "./Webshells/WShell_PHP_in_images.yar"

--- a/email_index.yar
+++ b/email_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./email/EMAIL_Cryptowall.yar"
 include "./email/urls.yar"

--- a/index.yar
+++ b/index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Malicious_Documents/Maldoc_UserForm.yar"
 include "./Malicious_Documents/Maldoc_Dridex.yar"
@@ -51,12 +51,14 @@ include "./malware/MALW_IMuler.yar"
 include "./malware/MALW_Grozlex.yar"
 include "./malware/MALW_Backoff.yar"
 include "./malware/MALW_MiniAsp3_mem.yar"
+include "./malware/RANSOM_GoldenEye.yar"
 include "./malware/RAT_DarkComet.yar"
 include "./malware/APT_Codoso.yar"
 include "./malware/MALW_DirtJumper.yar"
 include "./malware/RAT_jRAT.yar"
 include "./malware/RAT_Cerberus.yar"
 include "./malware/APT_Sphinx_Moth.yar"
+include "./malware/RANSOM_Cerber.yar"
 include "./malware/MALW_Regsubdat.yar"
 include "./malware/MALW_KINS.yar"
 include "./malware/APT_Equation.yar"
@@ -152,17 +154,20 @@ include "./malware/MALW_Retefe.yar"
 include "./malware/RAT_Indetectables.yar"
 include "./malware/APT_Dubnium.yar"
 include "./malware/MALW_xDedic_marketplace.yar"
+include "./malware/APT_APT29_Grizzly_Steppe.yar"
 include "./malware/MALW_Iexpl0ree.yar"
 include "./malware/APT_Blackenergy.yar"
 include "./malware/APT_Terracota.yar"
 include "./malware/MALW_Jolob_Backdoor.yar"
 include "./malware/MALW_Hsdfihdf_banking.yar"
+include "./malware/MALW_AdGholas.yar"
 include "./malware/POS_LogPOS.yar"
 include "./malware/MALW_Warp.yar"
 include "./malware/MALW_MacControl.yar"
 include "./malware/RAT_BlackShades.yar"
 include "./malware/MALW_Pyinstaller.yar"
 include "./malware/MALW_Lateral_Movement.yar"
+include "./malware/MALW_Mirai.yar"
 include "./malware/APT_Poseidon_Group.yar"
 include "./malware/RAT_Gh0st.yar"
 include "./malware/MALW_Naspyupdate.yar"
@@ -211,6 +216,7 @@ include "./malware/RAT_Havex.yar"
 include "./malware/MALW_Cythosia.yar"
 include "./malware/RAT_NetwiredRC.yar"
 include "./malware/EXPERIMENTAL_Beef.yar"
+include "./malware/MALW_Magento_backend.yar"
 include "./malware/RAT_Gholee.yar"
 include "./malware/APT_Oilrig.yar"
 include "./malware/APT_OpClandestineWolf.yar"
@@ -219,6 +225,7 @@ include "./malware/MALW_Skeleton.yar"
 include "./malware/RAT_xRAT.yar"
 include "./malware/APT_PCclient.yar"
 include "./malware/MALW_Ponmocup.yar"
+include "./malware/GEN_PowerShell.yar"
 include "./malware/MALW_F0xy.yar"
 include "./malware/MALW_Kraken.yar"
 include "./malware/MALW_Notepad.yar"
@@ -271,6 +278,7 @@ include "./malware/MALW_Ezcob.yar"
 include "./malware/MALW_TreasureHunt.yar"
 include "./malware/RANSOM_Crypren.yar"
 include "./malware/MALW_Batel.yar"
+include "./malware/RANSOM_Comodosec.yar"
 include "./malware/MALW_Yayih.yar"
 include "./malware/APT_Hellsing.yar"
 include "./malware/MALW_Rockloader.yar"
@@ -278,6 +286,7 @@ include "./malware/RAT_Meterpreter_Reverse_Tcp.yar"
 include "./malware/MALW_Tinba.yar"
 include "./malware/MALW_Enfal.yar"
 include "./malware/RAT_CyberGate.yar"
+include "./malware/MALW_Magento_frontend.yar"
 include "./malware/MALW_Citadel.yar"
 include "./malware/APT_HackingTeam.yar"
 include "./malware/MALW_Miscelanea.yar"
@@ -286,6 +295,7 @@ include "./malware/POS_Mozart.yar"
 include "./malware/APT_Emissary.yar"
 include "./malware/APT_Bestia.yar"
 include "./malware/MALW_Chicken.yar"
+include "./malware/APT_FVEY_ShadowBrokers_Jan17_Screen_Strings.yar"
 include "./malware/MALW_Dexter.yar"
 include "./malware/APT_EQUATIONGRP.yar"
 include "./malware/MALW_Safenet.yar"
@@ -312,8 +322,8 @@ include "./malware/APT_Derusbi.yar"
 include "./malware/APT_OpDustStorm.yar"
 include "./malware/MALW_Fareit.yar"
 include "./malware/APT_UP007_SLServer.yar"
+include "./malware/MALW_Magento_suspicious.yar"
 include "./malware/MALW_Derkziel.yar"
-include "./malware/MALW_DirtyCow.yar"
 include "./malware/RANSOM_.CRYPTXXX.yar"
 include "./malware/APT_Minidionis.yar"
 include "./malware/MALW_Tedroo.yar"

--- a/index_w_mobile.yar
+++ b/index_w_mobile.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./Malicious_Documents/Maldoc_UserForm.yar"
 include "./Malicious_Documents/Maldoc_Dridex.yar"
@@ -51,12 +51,14 @@ include "./malware/MALW_IMuler.yar"
 include "./malware/MALW_Grozlex.yar"
 include "./malware/MALW_Backoff.yar"
 include "./malware/MALW_MiniAsp3_mem.yar"
+include "./malware/RANSOM_GoldenEye.yar"
 include "./malware/RAT_DarkComet.yar"
 include "./malware/APT_Codoso.yar"
 include "./malware/MALW_DirtJumper.yar"
 include "./malware/RAT_jRAT.yar"
 include "./malware/RAT_Cerberus.yar"
 include "./malware/APT_Sphinx_Moth.yar"
+include "./malware/RANSOM_Cerber.yar"
 include "./malware/MALW_Regsubdat.yar"
 include "./malware/MALW_KINS.yar"
 include "./malware/APT_Equation.yar"
@@ -152,17 +154,20 @@ include "./malware/MALW_Retefe.yar"
 include "./malware/RAT_Indetectables.yar"
 include "./malware/APT_Dubnium.yar"
 include "./malware/MALW_xDedic_marketplace.yar"
+include "./malware/APT_APT29_Grizzly_Steppe.yar"
 include "./malware/MALW_Iexpl0ree.yar"
 include "./malware/APT_Blackenergy.yar"
 include "./malware/APT_Terracota.yar"
 include "./malware/MALW_Jolob_Backdoor.yar"
 include "./malware/MALW_Hsdfihdf_banking.yar"
+include "./malware/MALW_AdGholas.yar"
 include "./malware/POS_LogPOS.yar"
 include "./malware/MALW_Warp.yar"
 include "./malware/MALW_MacControl.yar"
 include "./malware/RAT_BlackShades.yar"
 include "./malware/MALW_Pyinstaller.yar"
 include "./malware/MALW_Lateral_Movement.yar"
+include "./malware/MALW_Mirai.yar"
 include "./malware/APT_Poseidon_Group.yar"
 include "./malware/RAT_Gh0st.yar"
 include "./malware/MALW_Naspyupdate.yar"
@@ -211,6 +216,7 @@ include "./malware/RAT_Havex.yar"
 include "./malware/MALW_Cythosia.yar"
 include "./malware/RAT_NetwiredRC.yar"
 include "./malware/EXPERIMENTAL_Beef.yar"
+include "./malware/MALW_Magento_backend.yar"
 include "./malware/RAT_Gholee.yar"
 include "./malware/APT_Oilrig.yar"
 include "./malware/APT_OpClandestineWolf.yar"
@@ -219,6 +225,7 @@ include "./malware/MALW_Skeleton.yar"
 include "./malware/RAT_xRAT.yar"
 include "./malware/APT_PCclient.yar"
 include "./malware/MALW_Ponmocup.yar"
+include "./malware/GEN_PowerShell.yar"
 include "./malware/MALW_F0xy.yar"
 include "./malware/MALW_Kraken.yar"
 include "./malware/MALW_Notepad.yar"
@@ -271,6 +278,7 @@ include "./malware/MALW_Ezcob.yar"
 include "./malware/MALW_TreasureHunt.yar"
 include "./malware/RANSOM_Crypren.yar"
 include "./malware/MALW_Batel.yar"
+include "./malware/RANSOM_Comodosec.yar"
 include "./malware/MALW_Yayih.yar"
 include "./malware/APT_Hellsing.yar"
 include "./malware/MALW_Rockloader.yar"
@@ -278,6 +286,7 @@ include "./malware/RAT_Meterpreter_Reverse_Tcp.yar"
 include "./malware/MALW_Tinba.yar"
 include "./malware/MALW_Enfal.yar"
 include "./malware/RAT_CyberGate.yar"
+include "./malware/MALW_Magento_frontend.yar"
 include "./malware/MALW_Citadel.yar"
 include "./malware/APT_HackingTeam.yar"
 include "./malware/MALW_Miscelanea.yar"
@@ -286,6 +295,7 @@ include "./malware/POS_Mozart.yar"
 include "./malware/APT_Emissary.yar"
 include "./malware/APT_Bestia.yar"
 include "./malware/MALW_Chicken.yar"
+include "./malware/APT_FVEY_ShadowBrokers_Jan17_Screen_Strings.yar"
 include "./malware/MALW_Dexter.yar"
 include "./malware/APT_EQUATIONGRP.yar"
 include "./malware/MALW_Safenet.yar"
@@ -312,8 +322,8 @@ include "./malware/APT_Derusbi.yar"
 include "./malware/APT_OpDustStorm.yar"
 include "./malware/MALW_Fareit.yar"
 include "./malware/APT_UP007_SLServer.yar"
+include "./malware/MALW_Magento_suspicious.yar"
 include "./malware/MALW_Derkziel.yar"
-include "./malware/MALW_DirtyCow.yar"
 include "./malware/RANSOM_.CRYPTXXX.yar"
 include "./malware/APT_Minidionis.yar"
 include "./malware/MALW_Tedroo.yar"
@@ -400,4 +410,5 @@ include "./Mobile_Malware/Android_Dogspectus.yar"
 include "./Mobile_Malware/Android_Malware_Towelroot.yar"
 include "./Mobile_Malware/Android_RuMMS.yar"
 include "./Mobile_Malware/Android_MazarBot_z.yar"
+include "./Mobile_Malware/Android_Switcher.yar"
 include "./Mobile_Malware/Android_DeathRing.yar"
--- a/malware_index.yar
+++ b/malware_index.yar
 /*
 Generated by Yara-Rules
-On 28-11-2016
+On 12-01-2017
 */
 include "./malware/RANSOM_TeslaCrypt.yar"
 include "./malware/MALW_IMuler.yar"
 include "./malware/MALW_Grozlex.yar"
 include "./malware/MALW_Backoff.yar"
 include "./malware/MALW_MiniAsp3_mem.yar"
+include "./malware/RANSOM_GoldenEye.yar"
 include "./malware/RAT_DarkComet.yar"
 include "./malware/APT_Codoso.yar"
 include "./malware/MALW_DirtJumper.yar"
 include "./malware/RAT_jRAT.yar"
 include "./malware/RAT_Cerberus.yar"
 include "./malware/APT_Sphinx_Moth.yar"
+include "./malware/RANSOM_Cerber.yar"
 include "./malware/MALW_Regsubdat.yar"
 include "./malware/MALW_KINS.yar"
 include "./malware/APT_Equation.yar"
@@ -108,17 +110,20 @@ include "./malware/MALW_Retefe.yar"
 include "./malware/RAT_Indetectables.yar"
 include "./malware/APT_Dubnium.yar"
 include "./malware/MALW_xDedic_marketplace.yar"
+include "./malware/APT_APT29_Grizzly_Steppe.yar"
 include "./malware/MALW_Iexpl0ree.yar"
 include "./malware/APT_Blackenergy.yar"
 include "./malware/APT_Terracota.yar"
 include "./malware/MALW_Jolob_Backdoor.yar"
 include "./malware/MALW_Hsdfihdf_banking.yar"
+include "./malware/MALW_AdGholas.yar"
 include "./malware/POS_LogPOS.yar"
 include "./malware/MALW_Warp.yar"
 include "./malware/MALW_MacControl.yar"
 include "./malware/RAT_BlackShades.yar"
 include "./malware/MALW_Pyinstaller.yar"
 include "./malware/MALW_Lateral_Movement.yar"
+include "./malware/MALW_Mirai.yar"
 include "./malware/APT_Poseidon_Group.yar"
 include "./malware/RAT_Gh0st.yar"
 include "./malware/MALW_Naspyupdate.yar"
@@ -167,6 +172,7 @@ include "./malware/RAT_Havex.yar"
 include "./malware/MALW_Cythosia.yar"
 include "./malware/RAT_NetwiredRC.yar"
 include "./malware/EXPERIMENTAL_Beef.yar"
+include "./malware/MALW_Magento_backend.yar"
 include "./malware/RAT_Gholee.yar"
 include "./malware/APT_Oilrig.yar"
 include "./malware/APT_OpClandestineWolf.yar"
@@ -175,6 +181,7 @@ include "./malware/MALW_Skeleton.yar"
 include "./malware/RAT_xRAT.yar"
 include "./malware/APT_PCclient.yar"
 include "./malware/MALW_Ponmocup.yar"
+include "./malware/GEN_PowerShell.yar"
 include "./malware/MALW_F0xy.yar"
 include "./malware/MALW_Kraken.yar"
 include "./malware/MALW_Notepad.yar"
@@ -227,6 +234,7 @@ include "./malware/MALW_Ezcob.yar"
 include "./malware/MALW_TreasureHunt.yar"
 include "./malware/RANSOM_Crypren.yar"
 include "./malware/MALW_Batel.yar"
+include "./malware/RANSOM_Comodosec.yar"
 include "./malware/MALW_Yayih.yar"
 include "./malware/APT_Hellsing.yar"
 include "./malware/MALW_Rockloader.yar"
@@ -234,6 +242,7 @@ include "./malware/RAT_Meterpreter_Reverse_Tcp.yar"
 include "./malware/MALW_Tinba.yar"
 include "./malware/MALW_Enfal.yar"
 include "./malware/RAT_CyberGate.yar"
+include "./malware/MALW_Magento_frontend.yar"
 include "./malware/MALW_Citadel.yar"
 include "./malware/APT_HackingTeam.yar"
 include "./malware/MALW_Miscelanea.yar"
@@ -242,6 +251,7 @@ include "./malware/POS_Mozart.yar"
 include "./malware/APT_Emissary.yar"
 include "./malware/APT_Bestia.yar"
 include "./malware/MALW_Chicken.yar"
+include "./malware/APT_FVEY_ShadowBrokers_Jan17_Screen_Strings.yar"
 include "./malware/MALW_Dexter.yar"
 include "./malware/APT_EQUATIONGRP.yar"
 include "./malware/MALW_Safenet.yar"
@@ -268,8 +278,8 @@ include "./malware/APT_Derusbi.yar"
 include "./malware/APT_OpDustStorm.yar"
 include "./malware/MALW_Fareit.yar"
 include "./malware/APT_UP007_SLServer.yar"
+include "./malware/MALW_Magento_suspicious.yar"
 include "./malware/MALW_Derkziel.yar"
-include "./malware/MALW_DirtyCow.yar"
 include "./malware/RANSOM_.CRYPTXXX.yar"
 include "./malware/APT_Minidionis.yar"
 include "./malware/MALW_Tedroo.yar"