ET MALWARE Win32.Rovnix.I Checkin

SID: 2017279Rev: 40 views
History
Sourceet/open
CreatedAugust 6, 2013
UpdatedApril 24, 2020
Classificationcommand-and-control
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Win32.Rovnix.I Checkin"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/ld.aspx?key="; startswith; http.header_names; content:!"Accept|0d 0a|"; nocase; content:!"Referer|0d 0a|"; nocase; http.user_agent; content:"FWVersionTestAgent"; depth:18; reference:md5,605daaa9662b82c0d5982ad3a742d2e7; classtype:command-and-control; sid:2017279; rev:4; metadata:created_at 2013_08_06, signature_severity Major, updated_at 2020_04_24;)

References

md5
605daaa9662b82c0d5982ad3a742d2e7
Google SearchBrave Search

Metadata

created at2013_08_06
signature severityMajor
updated at2020_04_24

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!