MALWARE WebServer Compromise Kit Reverse Shell Banner

SID: 1900099Rev: 1Enabled2 views
Filehunters-ledger.rules
CreatedJune 25, 2026
UpdatedJune 25, 2026
Classificationtrojan-activity
alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"MALWARE WebServer Compromise Kit Reverse Shell Banner"; flow:to_server,established; content:"Spawn Shell"; depth:20; nocase; reference:campaign,WebServer-Compromise-Kit-91.236.230.250; classtype:trojan-activity; sid:1900099; rev:1; metadata:attack_target Client_Endpoint, deployment Perimeter, affected_product Windows, signature_severity Critical;)

References

campaignWebServer-Compromise-Kit-91.236.230.250

Metadata

attack targetClient_Endpoint
deploymentPerimeter
affected productWindows
signature severityCritical

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!