ET WEB_CLIENT Possible Malvertising FlashPost - POST to *.stats - Suricata Rule 2016023 (et/open)

ET WEB_CLIENT Possible Malvertising FlashPost - POST to *.stats

SID: 2016023Rev: 40 viewsHistory

Sourceet/open

CreatedDecember 13, 2012

UpdatedApril 22, 2020

Classificationbad-unknown

alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET WEB_CLIENT Possible Malvertising FlashPost - POST to *.stats"; flow:established,to_server; http.method; content:"POST"; http.uri; content:".stats"; http.request_body; content:"pageURL="; classtype:bad-unknown; sid:2016023; rev:4; metadata:created_at 2012_12_13, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_04_22;)

Metadata

created at2012_12_13

confidenceMedium

signature severityMajor

tagDescription_Generated_By_Proofpoint_Nexus

updated at2020_04_22

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!