ET MOBILE_MALWARE Android.Trojan.HiddenApp.OU SSL CnC Cert

SID: 2023509Rev: 30 views
History
Sourceet/open
CreatedNovember 15, 2016
UpdatedApril 24, 2024
Classificationcommand-and-control
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"ET MOBILE_MALWARE Android.Trojan.HiddenApp.OU SSL CnC Cert"; flow:established,to_client; tls.cert_subject; content:"C|3d|IT|2c 20|ST|3d|AAA|2c 20|L|3d|BB|2c 20|O|3d|EEE|2c 20|OU|3d|IT|20|Department|2c 20|CN|3d|SASDS|5f|Srv0"; reference:md5,cbd1c2db9ffc6b67cea46d271594c2ae; classtype:command-and-control; sid:2023509; rev:3; metadata:affected_product Android, attack_target Mobile_Client, created_at 2016_11_15, deployment Perimeter, confidence High, signature_severity Major, tag Android, updated_at 2024_04_24;)

References

md5
cbd1c2db9ffc6b67cea46d271594c2ae
Google SearchBrave Search

Metadata

affected productAndroid
attack targetMobile_Client
created at2016_11_15
deploymentPerimeter
confidenceHigh
signature severityMajor
tagAndroid
updated at2024_04_24

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!