ET MALWARE Backdoor.Win32.Xyligan Checkin
Sourceet/open
Fileemerging-malware.rules
CreatedMay 25, 2011
UpdatedMarch 6, 2024
Classificationcommand-and-control
alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Backdoor.Win32.Xyligan Checkin"; flow:established,to_server ; dsize:16; content:"|00 00 00 11 C8 00 00 00|"; depth:8; reference:md5,2190a2c0a3775bc9c60629ec2eb6f3b9 ; reference:md5,bfbc0b106a440c111a42936906d36643 ; classtype:command-and-control; sid:2012842; rev:4; metadata:created_at 2011_05_25, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_06;)
References
| md5 | 2190a2c0a3775bc9c60629ec2eb6f3b9 |
| md5 | bfbc0b106a440c111a42936906d36643 |
Metadata
created at2011_05_25
confidenceMedium
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_06
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!