🐾 - 🚨 Outgoing connection ↗ 🎛 Possible Trickbot ♞ C2 - Suricata Rule 3316396 (pawpatrules)

🐾 - 🚨 Outgoing connection ↗ 🎛 Possible Trickbot ♞ C2

SID: 3316396Rev: 20 views

Sourcepawpatrules

CreatedAugust 12, 2021

UpdatedNovember 16, 2021

Classificationtrojan-activity

alert ip any any -> 131.0.112.122 any (msg:"🐾 - 🚨 Outgoing connection ↗ 🎛 Possible Trickbot ♞ C2"; reference:url,https://thedfirreport.com/2021/08/01/bazarcall-to-conti-ransomware-via-trickbot-and-cobalt-strike/; metadata:created_at 2021_08_12, updated_at 2021_11_16; sid:3316396; rev:2; classtype:trojan-activity;)

References

url	https://thedfirreport.com/2021/08/01/bazarcall-to-conti-ransomware-via-trickbot-and-cobalt-strike/

Metadata

created at2021_08_12

updated at2021_11_16

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!