ET MALWARE Ransomware Popcorn-Time .onion Payment Domain (3hnuhydu4pd247qb)

SID: 2023589Rev: 30 viewsHistory

Sourceet/open

CreatedDecember 8, 2016

UpdatedAugust 30, 2019

Classificationtrojan-activity

alert dns $HOME_NET any -> any any (msg:"ET MALWARE Ransomware Popcorn-Time .onion Payment Domain (3hnuhydu4pd247qb)"; dns_query; content:"3hnuhydu4pd247qb"; depth:16; fast_pattern; nocase; classtype:trojan-activity; sid:2023589; rev:3; metadata:attack_target Client_Endpoint, created_at 2016_12_08, deployment Perimeter, malware_family Ransomware, confidence High, signature_severity Major, tag Ransomware, updated_at 2019_08_30, mitre_tactic_id TA0040, mitre_tactic_name Impact, mitre_technique_id T1486, mitre_technique_name Data_Encrypted_for_Impact;)

Metadata

attack targetClient_Endpoint

created at2016_12_08

deploymentPerimeter

malware familyRansomware

confidenceHigh

signature severityMajor

tagRansomware

updated at2019_08_30

mitre tactic idTA0040

mitre tactic nameImpact

mitre technique idT1486

mitre technique nameData_Encrypted_for_Impact

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!