ET PHISHING Possible Microsoft Phishing HTML Class Tag

SID: 2052530Rev: 141 views
History
Sourceet/open
CreatedMay 9, 2024
UpdatedMay 9, 2024
Classificationsocial-engineering
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET PHISHING Possible Microsoft Phishing HTML Class Tag"; flow:established,to_client; http.stat_code; content:"200"; file.data; content:"|3c|html class|3d 22 20|gttiirk idc0_350|22 3e|"; fast_pattern; classtype:social-engineering; sid:2052530; rev:1; metadata:affected_product Any, attack_target Client_Endpoint, tls_state TLSDecrypt, created_at 2024_05_09, deployment Perimeter, deployment SSLDecrypt, performance_impact Low, confidence Low, signature_severity Major, updated_at 2024_05_09; target:dest_ip;)

Metadata

affected productAny
attack targetClient_Endpoint
tls stateTLSDecrypt
created at2024_05_09
deploymentSSLDecrypt
performance impactLow
confidenceLow
signature severityMajor
updated at2024_05_09

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!