ET MALWARE Rogue.Win32/Winwebsec Checkin

SID: 2011277Rev: 90 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedApril 21, 2020
Classificationcommand-and-control
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Rogue.Win32/Winwebsec Checkin"; flow:established,to_server; http.method; content:"GET"; nocase; http.uri; content:"in.php?affid="; content:"&url="; content:"&win="; content:"&sts="; classtype:command-and-control; sid:2011277; rev:9; metadata:created_at 2010_07_30, signature_severity Major, updated_at 2020_04_21;)

Metadata

created at2010_07_30
signature severityMajor
updated at2020_04_21

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!