ET EXPLOIT Win32/Industroyer DDOS Siemens SIPROTEC (CVE-2015-5374)

SID: 2024376Rev: 39 viewsHistory

Sourceet/open

CreatedJune 12, 2017

UpdatedAugust 19, 2020

Classificationattempted-dos

alert udp any any -> $HOME_NET 50000 (msg:"ET EXPLOIT Win32/Industroyer DDOS Siemens SIPROTEC (CVE-2015-5374)"; dsize:18; content:"|11 49 00 00 00 00 00 00 00 00 00 00 00 00 00 00 28 9E|"; fast_pattern; reference:url,www.welivesecurity.com/wp-content/uploads/2017/06/Win32_Industroyer.pdf; classtype:attempted-dos; sid:2024376; rev:3; metadata:attack_target Client_and_Server, created_at 2017_06_12, cve CVE_2015_5374, deployment Perimeter, deployment Internal, performance_impact Low, confidence High, signature_severity Major, updated_at 2020_08_19;)

References

url	www.welivesecurity.com/wp-content/uploads/2017/06/Win32_Industroyer.pdf

Metadata

attack targetClient_and_Server

created at2017_06_12

cveCVE-2015-5374

deploymentInternal

performance impactLow

confidenceHigh

signature severityMajor

updated at2020_08_19

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!