ET MALWARE Observed Compromised Domain Serving ClickFix Related Payloads (four-meme .dev)

SID: 2061745Rev: 160 views
History
Sourceet/open
CreatedApril 18, 2025
UpdatedApril 18, 2025
Classificationtrojan-activity
alert dns $HOME_NET any -> any any (msg:"ET MALWARE Observed Compromised Domain Serving ClickFix Related Payloads (four-meme .dev)"; dns.query; dotprefix; content:".four-meme.dev"; nocase; endswith; classtype:trojan-activity; sid:2061745; rev:1; metadata:attack_target Client_Endpoint, created_at 2025_04_18, deployment Perimeter, malware_family ClickFix, confidence High, signature_severity Major, tag compromised_website, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2025_04_18;)

Metadata

attack targetClient_Endpoint
created at2025_04_18
deploymentPerimeter
malware familyClickFix
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2025_04_18

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!