CTEP/IPS Threat Content Update Release Notes 96.1.1.211
CTEP/IPS Threat Content Update Release Notes 96.1.1.211
Refer to the following summary of signatures deployed on 13th July, 2022 with the IPS content release:
- Signatures added: 20
- Signatures modified: 00
- Signatures removed: 02
Signatures Added
SID | Description | Reference |
---|---|---|
60213 | OS-WINDOWS Microsoft Windows CSRS subsystem elevation of privilege attempt | CVE-2022-22047 |
150153 | POLICY-OTHER Netskope test string download | – |
60192 | OS-WINDOWS Microsoft Windows storage elevation of privilege attempt | CVE-2022-30220 |
60199 | OS-WINDOWS Microsoft Windows Advanced Local Procedure Call elevation of privilege attempt | CVE-2022-30202 |
150150 | MALWARE-CNC Sakula.Generic suspicious traffic detected | – |
60207 | OS-WINDOWS Microsoft Windows Graphics Component elevation of privilege attempt | CVE-2022-22034 |
150151 | MALWARE-CNC Sakula.Generic suspicious traffic detected | – |
150248 | MALWARE-CNC Command and Control – BACKSPACE C2 Communication Variant3 detected | – |
150249 | MALWARE-CNC Command and Control – BACKSPACE C2 Communication Variant2 detected | – |
150246 | MALWARE-CNC Command and Control – CRYPTOWALL Beacon detected | – |
150247 | MALWARE-CNC Command and Control – ENCRYPTORRAAS C2 Check-in detected | – |
150244 | MALWARE-CNC Command and Control – NANOCORE C2 Traffic Variant5 detected | – |
150245 | MALWARE-CNC Command and Control – LOKIBOT C2 Communication Variant5 detected | – |
150144 | MALWARE-CNC Birdpen.Generic C2 traffic detected | – |
150146 | MALWARE-CNC Tofsee.Gen suspicious traffic detected | – |
150145 | MALWARE-CNC Trevor.Generic C2 traffic detected | – |
150147 | MALWARE-CNC Phisery.Isotope.Generic suspicious traffic detected | – |
150143 | MALWARE-CNC Superglue.Generic C2 Beacon traffic detected | – |
150149 | MALWARE-CNC Smokeloader.Generic suspicious traffic detected | – |
150148 | MALWARE-CNC Sourcandle.Generic suspicious traffic detected | – |