Versions (5)
Version DetailsCurrent
Rev: 4 • Jul 30, 2010, 12:00 PMET EXPLOIT Foofus.net Password dumping dll injection
alert tcp any any -> $HOME_NET [139,445] (msg:"ET EXPLOIT Foofus.net Password dumping dll injection"; flow:to_server,established; content:"|6c 00 73 00 72 00 65 00 6d 00 6f 00 72 00 61|"; reference:url,xinn.org/Snort-fgdump.html; classtype:suspicious-filename-detect; sid:2008476; rev:4; metadata:created_at 2010_07_30, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)
Jul 30, 2010, 12:00 PM
Jul 26, 2019, 12:00 PM
Sep 21, 2024, 3:00 AM
Nov 3, 2025, 10:34 PM
rules/emerging-exploit.rules