ET MALWARE Vawtrak/NeverQuest .onion Proxy Domain (otsaa35gxbcwvrqs)
Sourceet/open
CreatedMarch 27, 2015
UpdatedAugust 30, 2019
Classificationtrojan-activity
alert dns $HOME_NET any -> any any (msg:"ET MALWARE Vawtrak/NeverQuest .onion Proxy Domain (otsaa35gxbcwvrqs)"; dns_query; content:"otsaa35gxbcwvrqs"; depth:16; nocase; fast_pattern; reference:url,now.avg.com/banking-trojan-vawtrak-harvesting-passwords-worldwide/; classtype:trojan-activity; sid:2020759; rev:3; metadata:created_at 2015_03_27, confidence High, signature_severity Major, updated_at 2019_08_30;)
Metadata
created at2015_03_27
confidenceHigh
signature severityMajor
updated at2019_08_30
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!