ET MALWARE DNS Query to TOX Ransomware onion (xwxwninkssujglja)Source: et/open
alert dns $HOME_NET any -> any any (msg: "ET MALWARE DNS Query to TOX Ransomware onion (xwxwninkssujglja)"; dns_query; content: "xwxwninkssujglja"; depth: 16; fast_pattern; nocase; reference: url,blogs.mcafee.com/mcafee-labs/meet-tox-ransomware-for-the-rest-of-us; reference: md5,91da679f417040558059ccd5b1063688; classtype: trojan-activity; sid: 2021164; rev: 3; metadata: attack_target Client_Endpoint, created_at 2015_05_29, deployment Perimeter, confidence Medium, signature_severity Major, tag Ransomware, updated_at 2019_08_30, mitre_tactic_id TA0040, mitre_tactic_name Impact, mitre_technique_id T1486, mitre_technique_name Data_Encrypted_for_Impact;)
References
URLhttps://blogs.mcafee.com/mcafee-labs/meet-tox-ransomware-for-the-rest-of-us
MD591da679f417040558059ccd5b1063688
-- Search: [Brave | Google]
Metadata
attack_targetClient_Endpoint
created_at2015_05_29
deploymentPerimeter
confidenceMedium
signature_severityMajor
tagRansomware
updated_at2019_08_30
mitre_tactic_idTA0040
mitre_tactic_nameImpact
mitre_technique_idT1486
mitre_technique_nameData_Encrypted_for_Impact
Views: 3
Login to comment