Rule History

alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Possible Win32/SillyFDC WordPress Traffic"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/?dm=6b2280e30391615dcaa18e533ccb99a9"; fast_pattern; depth:37; reference:md5,3c10f65f8c1a84c53d94c331a63cad06; classtype:trojan-activity; sid:2020845; rev:4; metadata:affected_product Wordpress, affected_product Wordpress_Plugins, attack_target Web_Server, created_at 2015_04_07, deployment Datacenter, confidence Medium, signature_severity Major, tag Wordpress, updated_at 2020_05_21;)