Versions (3)
Version DetailsCurrent
Rev: 7 • Jun 12, 2013, 12:00 PMET DELETED Kuluoz.B Shipping Label Spam Campaign
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET DELETED Kuluoz.B Shipping Label Spam Campaign"; flow:established,to_server; content:".php?"; http_uri; content:"_info="; distance:1; within:6; http_uri; pcre:"/\.php\?[a-z]_info=[a-z0-9]{1,4}_\d+?$/Ui"; content:!"Referer|3a 20|"; http_header; classtype:trojan-activity; sid:2017002; rev:7; metadata:created_at 2013_06_12, signature_severity Unknown, updated_at 2019_09_09;)Jun 12, 2013, 12:00 PM
Sep 9, 2019, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-deleted.rules