AT related malicious URL (url2745 .absoluterail .com/ls/click?upn=u001 .tG9QZ1bWjBCAROH6pq8MGeRVeSaoEq61Qzb2DXBnlX0dkFFV0-2BvO17gnRy7UU-2FgezAaI_nhF4ZmJ5D9fHGdVqiWtP3e1W6ysHem-2BGYv73n4NKR7gLw1vlnszZtMvpO-2Boawb1jrXf6-2FfYWRMPzZ5Ay8cI5jR-2BVd4IeW1rDc03aDph6LcrbIr5HL-2FdMTXplBiZB9KpBeiLVjaJpmSJf4AOj7hyQ26Dokhqv1pKDk4cI54W0T-2F4Xqjr1C-2B0UDGTAp2uZHwJsQrf-2FIo6G6IwyugN8XcP2CA-3D-3D)

SID: 6001136Rev: 20 views
Sourcejulioliraup/antiphishing
CreatedMay 22, 2026
UpdatedMay 22, 2026
Classificationsocial-engineering
alert http $HOME_NET any -> any any (msg:"AT related malicious URL (url2745 .absoluterail .com/ls/click?upn=u001 .tG9QZ1bWjBCAROH6pq8MGeRVeSaoEq61Qzb2DXBnlX0dkFFV0-2BvO17gnRy7UU-2FgezAaI_nhF4ZmJ5D9fHGdVqiWtP3e1W6ysHem-2BGYv73n4NKR7gLw1vlnszZtMvpO-2Boawb1jrXf6-2FfYWRMPzZ5Ay8cI5jR-2BVd4IeW1rDc03aDph6LcrbIr5HL-2FdMTXplBiZB9KpBeiLVjaJpmSJf4AOj7hyQ26Dokhqv1pKDk4cI54W0T-2F4Xqjr1C-2B0UDGTAp2uZHwJsQrf-2FIo6G6IwyugN8XcP2CA-3D-3D)"; flow:established,to_server; http.uri; content:"/ls/click?upn=u001.tG9QZ1bWjBCAROH6pq8MGeRVeSaoEq61Qzb2DXBnlX0dkFFV0-2BvO17gnRy7UU-2FgezAaI_nhF4ZmJ5D9fHGdVqiWtP3e1W6ysHem-2BGYv73n4NKR7gLw1vlnszZtMvpO-2Boawb1jrXf6-2FfYWRMPzZ5Ay8cI5jR-2BVd4IeW1rDc03aDph6LcrbIr5HL-2FdMTXplBiZB9KpBeiLVjaJpmSJf4AOj7hyQ26Dokhqv1pKDk4cI54W0T-2F4Xqjr1C-2B0UDGTAp2uZHwJsQrf-2FIo6G6IwyugN8XcP2CA-3D-3D"; startswith; fast_pattern; http.host; content:"url2745.absoluterail.com"; endswith; reference:url,openphish.com; reference:url,github.com/julioliraup/Antiphishing; reference:url,julioliraup.github.io/ET/signature.html?sid=6001136; classtype:social-engineering; sid:6001136; rev:2; metadata:signature_severity Major, created_et 2026_05_11, updated_et 2025_05_11;)

References

urlopenphish.com
urlgithub.com/julioliraup/Antiphishing
urljulioliraup.github.io/ET/signature.html?sid=6001136

Metadata

signature severityMajor
created et2026_05_11
updated et2025_05_11

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!