ET MALWARE Volex - OceanLotus System Profiling JavaScript (linkStorage.x00SOCKET) - Suricata Rule 2024968 (et/open)

ET MALWARE Volex - OceanLotus System Profiling JavaScript (linkStorage.x00SOCKET)

SID: 2024968Rev: 30 viewsHistory

Sourceet/open

CreatedNovember 6, 2017

UpdatedJuly 26, 2019

Classificationtargeted-activity

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET MALWARE Volex - OceanLotus System Profiling JavaScript (linkStorage.x00SOCKET)"; flow:to_client,established; file_data; content:"linkStorage.x00SOCKET"; reference:url,volexity.com/blog/2017/11/06/oceanlotus-blossoms-mass-digital-surveillance-and-exploitation-of-asean-nations-the-media-human-rights-and-civil-society/; classtype:targeted-activity; sid:2024968; rev:3; metadata:attack_target Client_Endpoint, created_at 2017_11_06, deployment Perimeter, performance_impact Low, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)

References

url	volexity.com/blog/2017/11/06/oceanlotus-blossoms-mass-digital-surveillance-and-exploitation-of-asean-nations-the-media-human-rights-and-civil-society/

Metadata

attack targetClient_Endpoint

created at2017_11_06

deploymentPerimeter

performance impactLow

confidenceHigh

signature severityMajor

tagDescription_Generated_By_Proofpoint_Nexus

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!