ET MALWARE wisp backdoor detected reporting

SID: 2011395Rev: 40 views
History
Sourceet/open
CreatedSeptember 28, 2010
UpdatedMarch 10, 2024
Classificationtrojan-activity
alert http $HOME_NET any -> $EXTERNAL_NET $HTTP_PORTS (msg:"ET MALWARE wisp backdoor detected reporting"; flow:established,to_server; http.uri; content:"getkys.kys"; fast_pattern; nocase; content:"hostname="; nocase; classtype:trojan-activity; sid:2011395; rev:4; metadata:created_at 2010_09_28, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_10;)

Metadata

created at2010_09_28
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_10

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!