Rule History

alert dns $HOME_NET any -> any any (msg:"ET MALWARE DNS Query to MINEBRIDGE CnC Domain (compilator333 .top)"; dns.query; content:"compilator333.top"; nocase; bsize:17; reference:url,www.fireeye.com/blog/threat-research/2020/01/stomp-2-dis-brilliance-in-the-visual-basics.html; classtype:domain-c2; sid:2029430; rev:2; metadata:affected_product Windows_XP_Vista_7_8_10_Server_32_64_Bit, attack_target Client_Endpoint, created_at 2020_02_13, deployment Perimeter, malware_family MINEBRIDGE, confidence High, signature_severity Major, updated_at 2020_10_29;)