Summary
ThreatDV - Malware Filter Package #1766 March 30, 2021
Details
| Thank you for subscribing to Threat Digital Vaccine updates brought to you by Trend Micro™ TippingPoint DVLabs. New content is now available at the Threat Management Center (TMC): https://tmc.tippingpoint.com SMS customers can update the malware filter set through the SMS client. Go to Profiles > Auxiliary DVs > Download to detect and load the latest update. |
| System Requirements |
| The malware filter package requires TOS v3.7.0, TPS v4.0.0, vTPS v4.0.1 or later. This filter package is supported only on the N and NX Platform IPS, TPS and vTPS systems licensed for the ThreatDV (formerly ReputationDV) service. |
| The Malware Filter Package can also be manually downloaded from the following URL: https://tmc.tippingpoint.com/TMC/ViewPackage?parentFolderId=malware&contentId=Malware_3.7.0_1766.pkg |
Update Details
Table of Contents
--------------------------
Filters
New Filters - 8
Modified Filters (logic changes) - 0
Modified Filters (metadata changes only) - 30
Removed Filters - 0
Filters
----------------
New Filters:
39396: HTTP: Trojan.MSIL.Ottimonest.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployment: Not enabled by default in any deployment.
- Release Date: March 30, 2021
39397: HTTP: Trojan.MSIL.TealjectStealer.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: March 30, 2021
39398: HTTP: Trojan.Python.Wacatlogger.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployment: Not enabled by default in any deployment.
- Release Date: March 30, 2021
39399: HTTP: Trojan.Win32.OdyLogger.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: March 30, 2021
39426: HTTP: Backdoor.Python.Attaporat.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: March 30, 2021
39427: TCP: Backdoor.MSIL.Greefairax.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: March 30, 2021
39428: HTTP: Trojan.Win32.CopperStealer.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: March 30, 2021
39429: HTTP: Trojan-Downloader.MacOS.Silversparrow.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: March 30, 2021
Modified Filters (logic changes): None
Modified Filters (metadata changes only):
* = Enabled in Default deployments
* 25243: HTTP: Trojan.JS.Evilnumphant.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Vulnerability references updated.
- Release Date: May 12, 2020
- Last Modified Date: March 30, 2021
* 25360: TCP: Worm.Linux.Maupheusbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: May 12, 2020
- Last Modified Date: March 30, 2021
* 28096: HTTP: Worm.Linux.Owodegbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: May 19, 2020
- Last Modified Date: March 30, 2021
* 31566: HTTP: Worm.Linux.Jigokubot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: June 02, 2020
- Last Modified Date: March 30, 2021
* 31575: TCP: Worm.Linux.Arjorouser.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: June 02, 2020
- Last Modified Date: March 30, 2021
* 33111: TCP: Worm.Linux.Hakai.B Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: June 02, 2020
- Last Modified Date: March 30, 2021
* 33480: HTTP: Trojan-Downloader.Win32.AbsentLoader.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Vulnerability references updated.
- Release Date: June 09, 2020
- Last Modified Date: March 30, 2021
* 37300: TCP: Trojan.Linux.Ostemgafbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 03, 2020
- Last Modified Date: March 30, 2021
* 37314: HTTP: Trojan.Linux.Kaguyabot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 10, 2020
- Last Modified Date: March 30, 2021
* 37316: TCP: Worm.Linux.Kevisdbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 10, 2020
- Last Modified Date: March 30, 2021
* 37387: TCP: Trojan.Linux.Softiparch.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 17, 2020
- Last Modified Date: March 30, 2021
* 37389: TCP: Worm.Linux.Polarxtcbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 17, 2020
- Last Modified Date: March 30, 2021
* 37409: TCP: Trojan.Linux.Dayzdbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 24, 2020
- Last Modified Date: March 30, 2021
* 37411: TCP: Trojan.Linux.Leshnomed.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 24, 2020
- Last Modified Date: March 30, 2021
* 37412: TCP: Trojan.Linux.Balitebot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 24, 2020
- Last Modified Date: March 30, 2021
* 37414: HTTP: Worm.Linux.Polarisbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 24, 2020
- Last Modified Date: March 30, 2021
* 37425: TCP: Worm.Linux.Eatidbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 24, 2020
- Last Modified Date: March 30, 2021
* 37462: HTTP: Trojan.Linux.Gangmirbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: March 31, 2020
- Last Modified Date: March 30, 2021
* 37508: HTTP: Worm.Linux.Noelobot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 07, 2020
- Last Modified Date: March 30, 2021
* 37512: TCP: Worm.Linux.Puanorais.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 07, 2020
- Last Modified Date: March 30, 2021
37513: TCP: Trojan.Linux.Mukashibot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Vulnerability references updated.
- Release Date: April 07, 2020
- Last Modified Date: March 30, 2021
* 37616: HTTP: Worm.Linux.Tsunamihoaxbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 14, 2020
- Last Modified Date: March 30, 2021
* 37619: TCP: Worm.Linux.Tridflouth.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 14, 2020
- Last Modified Date: March 30, 2021
* 37628: HTTP: Worm.Linux.Darknexus.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 21, 2020
- Last Modified Date: March 30, 2021
37641: TCP: Backdoor.Linux.Caspermirbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 21, 2020
- Last Modified Date: March 30, 2021
* 37682: HTTP: Trojan.Linux.Polarisibot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 28, 2020
- Last Modified Date: March 30, 2021
* 37683: TCP: Trojan.Linux.Raietecen.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 28, 2020
- Last Modified Date: March 30, 2021
37709: TCP: Trojan.Linux.Susthuckbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: April 28, 2020
- Last Modified Date: March 30, 2021
* 37843: HTTP: Trojan.Python.Indigosysinfo.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Vulnerability references updated.
- Release Date: July 07, 2020
- Last Modified Date: March 30, 2021
* 37856: HTTP: Worm.Linux.Snomethbot.A Runtime Detection
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Miscellaneous modification.
- Release Date: July 14, 2020
- Last Modified Date: March 30, 2021
Removed Filters: None
Top of the Page
