Versions (4)
Version DetailsCurrent
Rev: 4 • Dec 16, 2014, 12:00 PMET EXPLOIT_KIT Malicious Referer Bulk Traffic Sometimes Leading to EKs (Possible Bedep infection) Dec 16 2014
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET EXPLOIT_KIT Malicious Referer Bulk Traffic Sometimes Leading to EKs (Possible Bedep infection) Dec 16 2014"; flow:established,to_server; http.referer; content:"rowedmedia.com/search.php"; fast_pattern; endswith; threshold:type limit, track by_src, count 1, seconds 60; classtype:exploit-kit; sid:2019950; rev:4; metadata:created_at 2014_12_16, confidence Medium, signature_severity Major, updated_at 2024_02_23;)
Dec 16, 2014, 12:00 PM
Feb 23, 2024, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-exploit_kit.rules