🐾 - 🚨 Suspicious HTTP PUT method used - Possible file upload or malware (seen in LockBit 2.0 attacks) - Possible Leak 🚱 - Suricata Rule 3300345 (pawpatrules)

🐾 - 🚨 Suspicious HTTP PUT method used - Possible file upload or malware (seen in LockBit 2.0 attacks) - Possible Leak 🚱

SID: 3300345Rev: 11 views

Sourcepawpatrules

CreatedFebruary 8, 2022

UpdatedFebruary 8, 2022

Classificationbad-unknown

alert http any any -> $EXTERNAL_NET any (msg:"🐾 - 🚨 Suspicious HTTP PUT method used - Possible file upload or malware (seen in LockBit 2.0 attacks) - Possible Leak 🚱"; http.method; content:"PUT"; reference:url,https://www.ic3.gov/Media/News/2022/220204.pdf; metadata:created_at 2022_02_08, updated_at 2022_02_08; sid:3300345; rev:1; classtype:bad-unknown;)

References

url	https://www.ic3.gov/Media/News/2022/220204.pdf

🐾 - 🚨 Suspicious HTTP PUT method used - Possible file upload or malware (seen in LockBit 2.0 attacks) - Possible Leak 🚱

References

Metadata

Comments (0)