Versions (4)
Version DetailsCurrent
Rev: 5 • Jan 15, 2013, 12:00 PMET MALWARE W32/Downloader Secondary Download Request - W32/Hupigon.Backdoor Likely Secondary Payload
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE W32/Downloader Secondary Download Request - W32/Hupigon.Backdoor Likely Secondary Payload"; flow:established,to_server; http.uri; content:"/pir/bfg.php?dll="; fast_pattern; reference:url,www.f-secure.com/v-descs/backdoor_w32_hupigon.shtml; classtype:trojan-activity; sid:2016208; rev:5; metadata:created_at 2013_01_15, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_09_18;)
Jan 15, 2013, 12:00 PM
Sep 18, 2020, 12:00 PM
Sep 21, 2024, 3:00 AM
Oct 13, 2025, 9:34 PM
rules/emerging-malware.rules