๐Ÿพ - ๐Ÿšจ Outgoing connection โ†— ๐ŸŽ› C2 - ๐Ÿ”’ Maze ransomware (Exfiltration de donnรฉes)

SID: 3312411Rev: 10 views
Sourcepawpatrules
CreatedJuly 25, 2020
UpdatedJuly 25, 2020
Classificationtrojan-activity
alert tcp any any -> 217.12.218.99 any (msg:"๐Ÿพ - ๐Ÿšจ Outgoing connection โ†— ๐ŸŽ› C2 - ๐Ÿ”’ Maze ransomware (Exfiltration de donnรฉes)"; flow:to_server, stateless; reference:url,https://labs.sentinelone.com/enter-the-maze-demystifying-an-affiliate-involved-in-maze-snow/; reference:url,https://malpedia.caad.fkie.fraunhofer.de/details/win.maze; sid:3312411; metadata:created_at 2020_07_25, updated_at 2020_07_25; rev:1; classtype:trojan-activity;)

References

urlhttps://labs.sentinelone.com/enter-the-maze-demystifying-an-affiliate-involved-in-maze-snow/
urlhttps://malpedia.caad.fkie.fraunhofer.de/details/win.maze

Metadata

created at2020_07_25
updated at2020_07_25

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!