ET MALWARE Backdoor.Win32.Xyligan Checkin

7.0.35.0SID: 2012842Rev: 4Enabled0 views
Sourceet/open
Fileemerging-malware.rules
CreatedMay 25, 2011
UpdatedMarch 6, 2024
Classificationcommand-and-control
alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Backdoor.Win32.Xyligan Checkin"; flow:established,to_server; dsize:16; content:"|00 00 00 11 C8 00 00 00|"; depth:8; reference:md5,2190a2c0a3775bc9c60629ec2eb6f3b9; reference:md5,bfbc0b106a440c111a42936906d36643; classtype:command-and-control; sid:2012842; rev:4; metadata:created_at 2011_05_25, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_06;)

References

md5
2190a2c0a3775bc9c60629ec2eb6f3b9
md5
bfbc0b106a440c111a42936906d36643

Metadata

created at2011_05_25
confidenceMedium
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_06

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!