ET EXPLOIT_KIT Unknown EK Landing

SID: 2017564Rev: 30 views
History
Sourceet/open
CreatedOctober 8, 2013
UpdatedJuly 26, 2019
Classificationattempted-user
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT_KIT Unknown EK Landing"; flow:established,from_server; file_data; content:"<applet"; nocase; content:"name=|22|kurban|22|"; distance:0; nocase; content:".exe"; nocase; reference:cve,2013-2465; reference:url,malwageddon.blogspot.com/2013/10/unknown-ek-i-wanna-be-billionaire-so.html; reference:url,seclists.org/fulldisclosure/2013/Aug/134; classtype:attempted-user; sid:2017564; rev:3; metadata:created_at 2013_10_08, confidence Medium, signature_severity Major, updated_at 2019_07_26;)

References

cve2013-2465
urlmalwageddon.blogspot.com/2013/10/unknown-ek-i-wanna-be-billionaire-so.html
urlseclists.org/fulldisclosure/2013/Aug/134

Metadata

created at2013_10_08
confidenceMedium
signature severityMajor
updated at2019_07_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!