CTEP/IPS Threat Content Update Release Notes 88.1.1.91

CTEP/IPS Threat Content Update Release Notes 88.1.1.91

Refer to the following summary of signatures deployed with the IPS content release:

  • Total signatures: 20753
  • Signatures added: 06
  • Signatures removed: 13
  • Signature modified: 00

Signatures Added

SIDDescriptionReference
57901MALWARE-CNC Doc.Downloader.Emotet variant outbound connectionattempthttp://attack.mitre.org/techniques/t1071
57890OS-WINDOWS Microsoft Windows Win32k privilege escalation attemptCVE-2021-34449
57998BROWSER-IE Microsoft Internet Explorer memory corruption attemptCVE-2021-34480
57894OS-WINDOWS Microsoft Windows Kernel privilege escalation attemptCVE-2021-31979
57896OS-WINDOWS Microsoft Windows kernel elevation of privilege attemptCVE-2021-33771
57893MALWARE-CNC Win.Trojan.TrickBot outbound connection attempthttp://www.virustotal.com/gui/file/b33f1abe6c9011aa598fb679135f0b543be2cd4e1178cba8bcf70a5859cb2f5e/detection

Signatures Removed

SIDDescriptionReference
6407APP-DETECT Gizmo register VOIP statehttp://www.gizmoproject.com/
140751MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140750MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140753MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140752MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140755MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140754MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140757MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140759MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140758MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140749MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140756MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
140760MALWARE-CNC Cobalt Strike C2 Communication Detectedhttp://cobaltstrike.com/
Share this Doc

CTEP/IPS Threat Content Update Release Notes 88.1.1.91

Or copy link

In this topic ...