Versions (3)
Version DetailsCurrent
Rev: 4 • Apr 16, 2014, 12:00 PMET MALWARE CryptoDefense DNS Domain Lookup
alert dns $HOME_NET any -> any 53 (msg:"ET MALWARE CryptoDefense DNS Domain Lookup"; dns.query; content:"rj2bocejarqnpuhm"; nocase; startswith; classtype:trojan-activity; sid:2018397; rev:4; metadata:created_at 2014_04_16, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_25;)
Apr 16, 2014, 12:00 PM
Mar 25, 2024, 12:00 PM
Apr 16, 2014, 12:00 PM
Jan 19, 2026, 10:35 PM
rules/emerging-malware.rules