AT related malicious URL (web-mail00 .standard .us-east-1 .oortstorages .com/doc/index .cvz?provider=1&signature=c9e9f35b19a0689f5026a6dd9f0da8ee494cd4668de6c57e25ee5a143abba4c4c1868edc6c2f9c3fb0b70c87116295271b1b31e142bd2d236240700c49dfaf60230212a4d89255c2b9bab69eb4e65bea)

SID: 6000908Rev: 20 views
Sourcejulioliraup/antiphishing
CreatedMay 22, 2026
UpdatedMay 22, 2026
Classificationsocial-engineering
alert http $HOME_NET any -> any any (msg:"AT related malicious URL (web-mail00 .standard .us-east-1 .oortstorages .com/doc/index .cvz?provider=1&signature=c9e9f35b19a0689f5026a6dd9f0da8ee494cd4668de6c57e25ee5a143abba4c4c1868edc6c2f9c3fb0b70c87116295271b1b31e142bd2d236240700c49dfaf60230212a4d89255c2b9bab69eb4e65bea)"; flow:established,to_server; http.uri; content:"/doc/index.cvz?provider=1&signature=c9e9f35b19a0689f5026a6dd9f0da8ee494cd4668de6c57e25ee5a143abba4c4c1868edc6c2f9c3fb0b70c87116295271b1b31e142bd2d236240700c49dfaf60230212a4d89255c2b9bab69eb4e65bea"; startswith; fast_pattern; http.host; content:"web-mail00.standard.us-east-1.oortstorages.com"; endswith; reference:url,openphish.com; reference:url,github.com/julioliraup/Antiphishing; reference:url,julioliraup.github.io/ET/signature.html?sid=6000908; classtype:social-engineering; sid:6000908; rev:2; metadata:signature_severity Major, created_et 2026_05_10, updated_et 2025_05_11;)

References

urlopenphish.com
urlgithub.com/julioliraup/Antiphishing
urljulioliraup.github.io/ET/signature.html?sid=6000908

Metadata

signature severityMajor
created et2026_05_10
updated et2025_05_11

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!