ET EXPLOIT_KIT Evil Redirector Leading to EK (delivered via e-mail)
Sourceet/open
CreatedMay 3, 2016
UpdatedMarch 17, 2022
Classificationexploit-kit
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT_KIT Evil Redirector Leading to EK (delivered via e-mail)"; flow:established,from_server; file_data; content:"|3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 70 69 6e 6b 2d 70 72 6f 64 75 63 74 73 2e 63 6f 6d 2f 69 6d 61 67 65 73 2f 70 6c 65 61 73 65 2d 77 61 69 74 2e 67 69 66 22|"; nocase; fast_pattern; content:"|61 6c 74 3d 22 50 6c 65 61 73 65 20 77 61 69 74 2e 2e 2e 22 2f 3e|"; nocase; content:"|3c 69 66 72 61 6d 65 20 73 72 63 3d|"; nocase; classtype:exploit-kit; sid:2022779; rev:3; metadata:affected_product Web_Browsers, attack_target Client_Endpoint, created_at 2016_05_03, deployment Perimeter, confidence High, signature_severity Major, tag Redirector, updated_at 2022_03_17;)
Metadata
affected productWeb_Browsers
attack targetClient_Endpoint
created at2016_05_03
deploymentPerimeter
confidenceHigh
signature severityMajor
tagRedirector
updated at2022_03_17
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!