Thank you for subscribing to Threat Digital Vaccine updates brought to you by Trend Micro™ TippingPoint DVLabs. New content is now available at the Threat Management Center (TMC): https://tmc.tippingpoint.com SMS customers can update the malware filter set through the SMS client. Go to Profiles > Auxiliary DVs > Download to detect and load the latest update. |
System Requirements |
The malware filter package requires TOS v3.7.0, TPS v4.0.0, vTPS v4.0.1 or later. This filter package is supported only on the N and NX Platform IPS, TPS and vTPS systems licensed for the ThreatDV (formerly ReputationDV) service. |
The Malware Filter Package can also be manually downloaded from the following URL: https://tmc.tippingpoint.com/TMC/ViewPackage?parentFolderId=malware&contentId=Malware_3.7.0_1766.pkg |
Update Details
Table of Contents
--------------------------
Filters
New Filters - 8
Modified Filters (logic changes) - 0
Modified Filters (metadata changes only) - 30
Removed Filters - 0
Filters
----------------
New Filters: 39396: HTTP: Trojan.MSIL.Ottimonest.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployment: Not enabled by default in any deployment. - Release Date: March 30, 2021 39397: HTTP: Trojan.MSIL.TealjectStealer.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployments: - Deployment: Default (Block / Notify) - Deployment: Performance-Optimized (Disabled) - Release Date: March 30, 2021 39398: HTTP: Trojan.Python.Wacatlogger.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployment: Not enabled by default in any deployment. - Release Date: March 30, 2021 39399: HTTP: Trojan.Win32.OdyLogger.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployments: - Deployment: Default (Block / Notify) - Deployment: Performance-Optimized (Disabled) - Release Date: March 30, 2021 39426: HTTP: Backdoor.Python.Attaporat.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployments: - Deployment: Default (Block / Notify) - Deployment: Performance-Optimized (Disabled) - Release Date: March 30, 2021 39427: TCP: Backdoor.MSIL.Greefairax.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployments: - Deployment: Default (Block / Notify) - Deployment: Performance-Optimized (Disabled) - Release Date: March 30, 2021 39428: HTTP: Trojan.Win32.CopperStealer.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployments: - Deployment: Default (Block / Notify) - Deployment: Performance-Optimized (Disabled) - Release Date: March 30, 2021 39429: HTTP: Trojan-Downloader.MacOS.Silversparrow.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Category: Virus - Severity: High - Description: This filter is deployed in the Malware Filter Package. - Deployments: - Deployment: Default (Block / Notify) - Deployment: Performance-Optimized (Disabled) - Release Date: March 30, 2021 Modified Filters (logic changes): None Modified Filters (metadata changes only): * = Enabled in Default deployments * 25243: HTTP: Trojan.JS.Evilnumphant.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Vulnerability references updated. - Release Date: May 12, 2020 - Last Modified Date: March 30, 2021 * 25360: TCP: Worm.Linux.Maupheusbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: May 12, 2020 - Last Modified Date: March 30, 2021 * 28096: HTTP: Worm.Linux.Owodegbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: May 19, 2020 - Last Modified Date: March 30, 2021 * 31566: HTTP: Worm.Linux.Jigokubot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: June 02, 2020 - Last Modified Date: March 30, 2021 * 31575: TCP: Worm.Linux.Arjorouser.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: June 02, 2020 - Last Modified Date: March 30, 2021 * 33111: TCP: Worm.Linux.Hakai.B Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: June 02, 2020 - Last Modified Date: March 30, 2021 * 33480: HTTP: Trojan-Downloader.Win32.AbsentLoader.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Vulnerability references updated. - Release Date: June 09, 2020 - Last Modified Date: March 30, 2021 * 37300: TCP: Trojan.Linux.Ostemgafbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 03, 2020 - Last Modified Date: March 30, 2021 * 37314: HTTP: Trojan.Linux.Kaguyabot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 10, 2020 - Last Modified Date: March 30, 2021 * 37316: TCP: Worm.Linux.Kevisdbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 10, 2020 - Last Modified Date: March 30, 2021 * 37387: TCP: Trojan.Linux.Softiparch.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 17, 2020 - Last Modified Date: March 30, 2021 * 37389: TCP: Worm.Linux.Polarxtcbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 17, 2020 - Last Modified Date: March 30, 2021 * 37409: TCP: Trojan.Linux.Dayzdbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 24, 2020 - Last Modified Date: March 30, 2021 * 37411: TCP: Trojan.Linux.Leshnomed.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 24, 2020 - Last Modified Date: March 30, 2021 * 37412: TCP: Trojan.Linux.Balitebot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 24, 2020 - Last Modified Date: March 30, 2021 * 37414: HTTP: Worm.Linux.Polarisbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 24, 2020 - Last Modified Date: March 30, 2021 * 37425: TCP: Worm.Linux.Eatidbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 24, 2020 - Last Modified Date: March 30, 2021 * 37462: HTTP: Trojan.Linux.Gangmirbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: March 31, 2020 - Last Modified Date: March 30, 2021 * 37508: HTTP: Worm.Linux.Noelobot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 07, 2020 - Last Modified Date: March 30, 2021 * 37512: TCP: Worm.Linux.Puanorais.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 07, 2020 - Last Modified Date: March 30, 2021 37513: TCP: Trojan.Linux.Mukashibot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Vulnerability references updated. - Release Date: April 07, 2020 - Last Modified Date: March 30, 2021 * 37616: HTTP: Worm.Linux.Tsunamihoaxbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 14, 2020 - Last Modified Date: March 30, 2021 * 37619: TCP: Worm.Linux.Tridflouth.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 14, 2020 - Last Modified Date: March 30, 2021 * 37628: HTTP: Worm.Linux.Darknexus.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 21, 2020 - Last Modified Date: March 30, 2021 37641: TCP: Backdoor.Linux.Caspermirbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 21, 2020 - Last Modified Date: March 30, 2021 * 37682: HTTP: Trojan.Linux.Polarisibot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 28, 2020 - Last Modified Date: March 30, 2021 * 37683: TCP: Trojan.Linux.Raietecen.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 28, 2020 - Last Modified Date: March 30, 2021 37709: TCP: Trojan.Linux.Susthuckbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: April 28, 2020 - Last Modified Date: March 30, 2021 * 37843: HTTP: Trojan.Python.Indigosysinfo.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Vulnerability references updated. - Release Date: July 07, 2020 - Last Modified Date: March 30, 2021 * 37856: HTTP: Worm.Linux.Snomethbot.A Runtime Detection - IPS Version: 3.7.0 and after. - TPS Version: 4.0.0 and after. - vTPS Version: 4.0.1 and after. - Miscellaneous modification. - Release Date: July 14, 2020 - Last Modified Date: March 30, 2021 Removed Filters: NoneTop of the Page