ET EXPLOIT Pwdump4 Session Established GetHash port 445

7.0.35.0SID: 2001754Rev: 5Enabled1 views
Sourceet/open
Fileemerging-exploit.rules
CreatedJuly 30, 2010
UpdatedMarch 7, 2024
Classificationsuspicious-login
alert tcp any any -> $HOME_NET 445 (msg:"ET EXPLOIT Pwdump4 Session Established GetHash port 445"; flow:established,to_server; content:"|50 57 44 75 6d 70 34 2e 64 6c 6c 00 47 65 74 48 61 73 68|"; classtype:suspicious-login; sid:2001754; rev:5; metadata:created_at 2010_07_30, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_07;)

Metadata

created at2010_07_30
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_07

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!