AT related malicious URL (b8376mghi5d .jp .larksuite .com/share/base/form/shrjpMwk5KEz3wmsdPQjPPcLjqh?auth_token=U7CK1RF-b27h3f53-4034-405b-b872-9581bcthi38r-NN5W4)

SID: 6000964Rev: 20 views
Sourcejulioliraup/antiphishing
CreatedMay 22, 2026
UpdatedMay 22, 2026
Classificationsocial-engineering
alert http $HOME_NET any -> any any (msg:"AT related malicious URL (b8376mghi5d .jp .larksuite .com/share/base/form/shrjpMwk5KEz3wmsdPQjPPcLjqh?auth_token=U7CK1RF-b27h3f53-4034-405b-b872-9581bcthi38r-NN5W4)"; flow:established,to_server; http.uri; content:"/share/base/form/shrjpMwk5KEz3wmsdPQjPPcLjqh?auth_token=U7CK1RF-b27h3f53-4034-405b-b872-9581bcthi38r-NN5W4"; startswith; fast_pattern; http.host; content:"b8376mghi5d.jp.larksuite.com"; endswith; reference:url,phishstats.info; reference:url,github.com/julioliraup/Antiphishing; reference:url,julioliraup.github.io/ET/signature.html?sid=6000964; classtype:social-engineering; sid:6000964; rev:2; metadata:signature_severity Major, created_et 2026_05_11, updated_et 2025_05_11;)

References

urlphishstats.info
urlgithub.com/julioliraup/Antiphishing
urljulioliraup.github.io/ET/signature.html?sid=6000964

Metadata

signature severityMajor
created et2026_05_11
updated et2025_05_11

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!