ET MALWARE DNS Query to MageCart Domain (antelec .click)

SID: 2053242Rev: 11 viewsHistory

Sourceet/open

CreatedJune 5, 2024

UpdatedJune 5, 2024

Classificationtrojan-activity

alert dns $HOME_NET any -> any any (msg:"ET MALWARE DNS Query to MageCart Domain (antelec .click)"; dns.query; dotprefix; content:".antelec.click"; nocase; endswith; reference:url,twitter.com/500mk500/status/1798429221838258244; classtype:trojan-activity; sid:2053242; rev:1; metadata:attack_target Client_Endpoint, created_at 2024_06_05, deployment Perimeter, malware_family MageCart, confidence High, signature_severity Major, updated_at 2024_06_05;)

References

url	twitter.com/500mk500/status/1798429221838258244

Metadata

attack targetClient_Endpoint

created at2024_06_05

deploymentPerimeter

malware familyMageCart

confidenceHigh

signature severityMajor

updated at2024_06_05

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!