ET MALWARE HATVIBE C2 Response

SID: 2062599Rev: 113 views
Sourceet/open
CreatedMay 27, 2025
UpdatedMay 27, 2025
Classificationtrojan-activity
alert http any any -> $HOME_NET any (msg:"ET MALWARE HATVIBE C2 Response"; flow:established,to_client; flowbits:isset,ET.HATVIBE.Beacon; http.response_body; content:"|25 25 25 25|"; startswith; reference:url,www.recordedfuture.com/research/russia-aligned-tag-110-targets-tajikistan-with-macro-enabled; classtype:trojan-activity; sid:2062599; rev:1; metadata:created_at 2025_05_27, signature_severity Unknown, updated_at 2025_05_27;)

References

urlwww.recordedfuture.com/research/russia-aligned-tag-110-targets-tajikistan-with-macro-enabled

Metadata

created at2025_05_27
signature severityUnknown
updated at2025_05_27

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!