🐾 - ☠ DNS Request 🌐 > 🏴‍☠️ FIN8 Group - Domain

SID: 3309779Rev: 10 views
Sourcepawpatrules
CreatedJanuary 20, 2022
UpdatedJanuary 20, 2022
Classificationtrojan-activity
alert dns any any -> any any (msg:"🐾 - ☠ DNS Request 🌐 > 🏴‍☠️ FIN8 Group - Domain"; flow:to_server, stateless; dns_query; content:"git-api.com"; nocase; reference:url,https://businessinsights.bitdefender.com/deep-dive-into-a-fin8-attack-a-forensic-investigation; reference:url,https://malpedia.caad.fkie.fraunhofer.de/actor/fin8; metadata:created_at 2022_01_20, updated_at 2022_01_20; sid:3309779; rev:1; classtype:trojan-activity;)

References

urlhttps://businessinsights.bitdefender.com/deep-dive-into-a-fin8-attack-a-forensic-investigation
urlhttps://malpedia.caad.fkie.fraunhofer.de/actor/fin8

Metadata

created at2022_01_20
updated at2022_01_20

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!