Versions (2)
Version DetailsCurrent
Rev: 2 • Sep 4, 2015, 12:00 PMET MALWARE PredatorPain Keylogger FTP Activity
alert tcp $HOME_NET any -> $EXTERNAL_NET 21 (msg:"ET MALWARE PredatorPain Keylogger FTP Activity"; flow:established,to_server; dsize:21; content:"USER|20|panzerhund2015|0d 0a|"; fast_pattern; reference:url,malwareconfig.com/stats/PredatorPain; reference:md5,e5ddca929924e4f34cb18692f09ac424; classtype:trojan-activity; sid:2021745; rev:2; metadata:created_at 2015_09_04, signature_severity Major, updated_at 2022_03_17;)
Sep 4, 2015, 12:00 PM
Mar 17, 2022, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-malware.rules