Versions (3)
Version DetailsCurrent
Rev: 7 • Oct 24, 2011, 12:00 PMET ADWARE_PUP Win32/Adware.Winggo.AB Checkin
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET ADWARE_PUP Win32/Adware.Winggo.AB Checkin"; flow:established,to_server; http.uri; content:"/LogProc.php?"; fast_pattern; content:"mac="; content:"mode="; content:"&pCode="; reference:md5,2700d3fcdd4b8a7c22788db1658d9163; reference:url,www.threatcenter.crdf.fr/?More&ID=46606&D=CRDF.Malware.Win32.PEx.Delphi.307674628; classtype:pup-activity; sid:2013797; rev:7; metadata:created_at 2011_10_24, signature_severity Minor, updated_at 2020_10_12;)
Oct 24, 2011, 12:00 PM
Oct 12, 2020, 12:00 PM
Oct 24, 2011, 12:00 PM
Sep 10, 2024, 1:01 PM
rules/emerging-adware_pup.rules