ET MOBILE_MALWARE Possible Android InMobi SDK SideDoor Access sendMail

SID: 2017781Rev: 30 viewsHistory

Sourceet/open

CreatedNovember 27, 2013

UpdatedAugust 15, 2019

Classificationtrojan-activity

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET MOBILE_MALWARE Possible Android InMobi SDK SideDoor Access sendMail"; flow:from_server,established; file_data; content:"utilityController"; nocase; content:"sendMail"; nocase; reference:url,fireeye.com/blog/threat-research/2014/01/js-binding-over-http-vulnerability-and-javascript-sidedoor.html; classtype:trojan-activity; sid:2017781; rev:3; metadata:created_at 2013_11_27, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_08_15;)

References

url	fireeye.com/blog/threat-research/2014/01/js-binding-over-http-vulnerability-and-javascript-sidedoor.html

Metadata

created at2013_11_27

confidenceMedium

signature severityMajor

tagDescription_Generated_By_Proofpoint_Nexus

updated at2019_08_15

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!