Versions (3)
Version DetailsCurrent
Rev: 7 • Nov 24, 2014, 12:00 PMET MALWARE DNS Query for Suspicious cvredirect.ddns.net Domain - CoinLocker Domain
alert dns $HOME_NET any -> any any (msg:"ET MALWARE DNS Query for Suspicious cvredirect.ddns.net Domain - CoinLocker Domain"; dns.query; content:"cvredirect.ddns.net"; depth:19; fast_pattern; endswith; nocase; reference:url,securelist.com/blog/virus-watch/67699/a-nightmare-on-malware-street; classtype:misc-activity; sid:2019790; rev:7; metadata:created_at 2014_11_24, deprecation_reason Relevance, confidence Medium, signature_severity Major, updated_at 2024_04_10, reviewed_at 2024_04_10;)
Nov 24, 2014, 12:00 PM
Apr 10, 2024, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-malware.rules