Talos Rules 2020-07-06
This release adds and modifies rules in several categories.

Talos has added and modified multiple rules in the file-other and server-webapp rule sets to provide coverage for emerging threats from these technologies.

For information about Snort Subscriber Rulesets available for purchase, please visit the Snort product page.

Change logs

2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2091600.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (server-webapp.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 3:54447 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54443 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54445 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54452 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54451 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54469 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54449 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54448 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54468 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54467 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54466 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54450 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54465 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54461 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54460 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54459 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54458 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54457 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54456 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54455 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54454 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54444 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54446 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54440 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54441 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54453 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54442 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54472 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54471 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54470 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)

Modified Rules:



2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2091501.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (server-webapp.rules)
 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 3:54448 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54442 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54450 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54449 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54465 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54445 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54458 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54441 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54446 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54447 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54455 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54444 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54456 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54457 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54459 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54440 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54469 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54467 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54468 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54472 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54471 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54451 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54443 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54461 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54466 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54460 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54454 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54453 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54452 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54470 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)

Modified Rules:



2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2091500.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (server-webapp.rules)
 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 3:54449 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54445 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54448 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54467 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54458 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54471 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54472 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54469 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54442 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54468 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54461 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54459 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54455 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54444 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54456 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54446 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54460 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54441 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54440 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54443 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54447 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54466 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54451 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54465 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54454 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54453 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54452 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54470 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54457 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54450 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)

Modified Rules:



2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2091401.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (server-webapp.rules)
 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 3:54445 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54449 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54455 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54467 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54468 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54466 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54448 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54471 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54472 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54446 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54469 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54450 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54447 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54451 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54441 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54444 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54459 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54442 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54457 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54458 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54443 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54456 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54440 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54461 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54465 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54460 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54454 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54453 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54452 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54470 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)

Modified Rules:



2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2091300.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (server-webapp.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 3:54456 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54449 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54445 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54448 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54467 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54450 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54471 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54469 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54472 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54446 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54458 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54443 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54441 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54468 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54440 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54470 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54453 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54452 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54454 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54457 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54447 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54455 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54444 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54461 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54459 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54460 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54466 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54451 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54442 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54465 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)

Modified Rules:



2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2091101.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (server-webapp.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 3:54467 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54442 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54450 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54448 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54468 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54459 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54449 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54446 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54471 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54472 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54453 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54469 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54452 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54440 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54470 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54445 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54454 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54443 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54455 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54457 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54441 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54444 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54447 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54451 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54458 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54456 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54461 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54465 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54460 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54466 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)

Modified Rules:



2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 3000.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (snort3-malware-other.rules)
 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (snort3-malware-other.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (snort3-malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (snort3-malware-other.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (snort3-malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (snort3-server-webapp.rules)
 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (snort3-malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (snort3-malware-other.rules)
 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (snort3-malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (snort3-malware-other.rules)
 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (snort3-malware-other.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (snort3-malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (snort3-malware-other.rules)

Modified Rules:



2020-07-06 21:07:51 UTC

Snort Subscriber Rules Update

Date: 2020-07-06

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2983.

The format of the file is:

gid:sid <-> Default rule state <-> Message (rule group)

New Rules:


 * 1:54434 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54439 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54435 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8568669-0 download attempt (malware-other.rules)
 * 1:54462 <-> ENABLED <-> SERVER-WEBAPP F5 BIG-IP Traffic Management User Interface remote code execution attempt (server-webapp.rules)
 * 1:54436 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54438 <-> DISABLED <-> MALWARE-OTHER Win.Malware.Midie-8569260-0 download attempt (malware-other.rules)
 * 1:54463 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54437 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Remcos-8401633-0 download attempt (malware-other.rules)
 * 1:54475 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 1:54476 <-> ENABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54474 <-> DISABLED <-> MALWARE-OTHER Win.Dropper.Adwind variant download attempt (malware-other.rules)
 * 1:54464 <-> DISABLED <-> MALWARE-OTHER Win.Packed.Bladabindi-8460552-0 download attempt (malware-other.rules)
 * 1:54473 <-> DISABLED <-> MALWARE-OTHER Win.Downloader.Nemucod variant download attempt (malware-other.rules)
 * 3:54450 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54458 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54453 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54443 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54469 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54445 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54448 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54454 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54444 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54471 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54452 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1112 attack attempt (file-other.rules)
 * 3:54457 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54440 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54468 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54447 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54472 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54455 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1113 attack attempt (file-other.rules)
 * 3:54456 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1114 attack attempt (file-other.rules)
 * 3:54449 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54446 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54460 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54459 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1115 attack attempt (file-other.rules)
 * 3:54441 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54465 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54470 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)
 * 3:54461 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1116 attack attempt (file-other.rules)
 * 3:54442 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1110 attack attempt (file-other.rules)
 * 3:54466 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1102 attack attempt (file-other.rules)
 * 3:54451 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1111 attack attempt (file-other.rules)
 * 3:54467 <-> ENABLED <-> FILE-OTHER TRUFFLEHUNTER TALOS-2020-1105 attack attempt (file-other.rules)

Modified Rules: