Upload files to "suricata"

2025-01-12 22:45:59 -05:00
parent ef02293a24
commit 825680b845
7 changed files with 106 additions and 0 deletions
--- a/suricata/Flagpro-suricata-20250112.txt
+++ b/suricata/Flagpro-suricata-20250112.txt
@ -0,0 +1,10 @@
+alert ip 107.191.61.40 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 107.191.61.40 (source) - APT Group: BlackTech"; sid:518411836; rev:1;)
+alert ip any any -> 107.191.61.40 any (msg:"Suspicious Flagpro IP detected Leaving Network: 107.191.61.40 (destination) - APT Group: BlackTech"; sid:518411837; rev:1;)
+alert ip 172.104.109.217 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 172.104.109.217 (source) - APT Group: BlackTech"; sid:2259028385; rev:1;)
+alert ip any any -> 172.104.109.217 any (msg:"Suspicious Flagpro IP detected Leaving Network: 172.104.109.217 (destination) - APT Group: BlackTech"; sid:2259028386; rev:1;)
+alert ip 139.162.87.180 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 139.162.87.180 (source) - APT Group: BlackTech"; sid:3339182745; rev:1;)
+alert ip any any -> 139.162.87.180 any (msg:"Suspicious Flagpro IP detected Leaving Network: 139.162.87.180 (destination) - APT Group: BlackTech"; sid:3339182746; rev:1;)
+alert ip 45.76.184.227 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 45.76.184.227 (source) - APT Group: BlackTech"; sid:3650785005; rev:1;)
+alert ip any any -> 45.76.184.227 any (msg:"Suspicious Flagpro IP detected Leaving Network: 45.76.184.227 (destination) - APT Group: BlackTech"; sid:3650785006; rev:1;)
+alert ip 45.32.23.140 any -> any any (msg:"Suspicious Flagpro IP detected Entering Network: 45.32.23.140 (source) - APT Group: BlackTech"; sid:9643976871; rev:1;)
+alert ip any any -> 45.32.23.140 any (msg:"Suspicious Flagpro IP detected Leaving Network: 45.32.23.140 (destination) - APT Group: BlackTech"; sid:9643976872; rev:1;)