ET USER_AGENTS Suspicious User-Agent (Sme32)

SID: 2010137Rev: 80 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedOctober 19, 2020
Classificationpup-activity
alert http $HOME_NET any -> any any (msg:"ET USER_AGENTS Suspicious User-Agent (Sme32)"; flow:established, to_server; http.user_agent; content:"Sme32"; depth:5; endswith; classtype:pup-activity; sid:2010137; rev:8; metadata:affected_product Any, attack_target Client_Endpoint, created_at 2010_07_30, deployment Perimeter, confidence High, signature_severity Major, tag User_Agent, updated_at 2020_10_19;)

Metadata

affected productAny
attack targetClient_Endpoint
created at2010_07_30
deploymentPerimeter
confidenceHigh
signature severityMajor
tagUser_Agent
updated at2020_10_19

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!