ET MALWARE Win32/Pift Checkin 1
Sourceet/open
Fileemerging-malware.rules
CreatedJuly 13, 2012
UpdatedApril 13, 2024
Classificationcommand-and-control
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Win32/Pift Checkin 1"; flow:established,to_server ; urilen:7; http.uri; content:"/plg3.z"; fast_pattern; http.user_agent; content:"Mozilla/4.0"; startswith; endswith; reference:url,kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/23000/PD23873/en_US/McAfee%20Labs%20Threat%20Advisory-W32-Pift.pdf ; reference:md5,d3c6af8284276b11c2f693c1195b4735 ; classtype:command-and-control; sid:2015458; rev:5; metadata:created_at 2012_07_13, malware_family Win32_Pift, signature_severity Major, updated_at 2024_04_13;)
References
Metadata
created at2012_07_13
malware familyWin32_Pift
signature severityMajor
updated at2024_04_13
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!