ET MALWARE Win32.ChinaZ.DDoSClient Checkin

SID: 2020209Rev: 20 views
History
Sourceet/open
CreatedJanuary 20, 2015
UpdatedJuly 26, 2019
Classificationcommand-and-control
alert tcp $HOME_NET any -> $EXTERNAL_NET 1024:65535 (msg:"ET MALWARE Win32.ChinaZ.DDoSClient Checkin"; flow:established,to_server; content:"Windows "; depth:8; content:"|20|MHZ|00|"; fast_pattern; distance:0; content:"|00|Win"; distance:0; content:"|00|"; distance:2; within:2; reference:md5,8643a44febdf73159b2d5c437dc40cd3; classtype:command-and-control; sid:2020209; rev:2; metadata:created_at 2015_01_20, signature_severity Major, updated_at 2019_07_26;)

References

md5
8643a44febdf73159b2d5c437dc40cd3
Google SearchBrave Search

Metadata

created at2015_01_20
signature severityMajor
updated at2019_07_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!