ET MALWARE Linux/ShellshockCampaign.DDOSBot Terminate Process CnC Server Message

SID: 2019304Rev: 20 viewsHistory

Sourceet/open

CreatedSeptember 29, 2014

UpdatedJuly 26, 2019

Classificationcommand-and-control

alert tcp $EXTERNAL_NET any -> $HOME_NET any (msg:"ET MALWARE Linux/ShellshockCampaign.DDOSBot Terminate Process CnC Server Message"; flow:established,to_client; dsize:12; content:"! LOLNOGTFO|0A|"; depth:12; reference:url,research.zscaler.com/2014/09/shellshock-attacks-spotted-in-wild.html; reference:cve,2014-6271; classtype:command-and-control; sid:2019304; rev:2; metadata:created_at 2014_09_29, cve CVE_2014_6271, signature_severity Major, updated_at 2019_07_26;)

References

url	research.zscaler.com/2014/09/shellshock-attacks-spotted-in-wild.html
cve	2014-6271

Metadata

created at2014_09_29

cveCVE-2014-6271

signature severityMajor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!