ET MOBILE_MALWARE Android/Netisend.A Posting Information to CnC
Sourceet/open
Fileemerging-mobile_malware.rules
CreatedSeptember 24, 2011
UpdatedApril 13, 2024
Classificationcommand-and-control
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MOBILE_MALWARE Android/Netisend.A Posting Information to CnC"; flow:established,to_server ; http.method; content:"POST"; nocase; http.uri; content:"/netsend/nmsm_json.jsp"; fast_pattern; http.user_agent; content:"Apache-HttpClient/"; startswith; reference:url,www.fortiguard.com/latest/mobile/2959807 ; classtype:command-and-control; sid:2013694; rev:8; metadata:affected_product Android, attack_target Client_Endpoint, created_at 2011_09_24, deployment Perimeter, signature_severity Critical, tag Android, updated_at 2024_04_13;)
References
Metadata
affected productAndroid
attack targetClient_Endpoint
created at2011_09_24
deploymentPerimeter
signature severityCritical
tagAndroid
updated at2024_04_13
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!