ET MALWARE W32/Quarian HTTP Proxy Header
Sourceet/open
Fileemerging-malware.rules
CreatedDecember 8, 2012
UpdatedApril 7, 2024
Classificationtrojan-activity
alert http1 $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE W32/Quarian HTTP Proxy Header"; flow:established,to_server ; http.header_names; content:"|0d 0a|Content_length|0d 0a|"; fast_pattern; content:"|0d 0a|Proxy-Connetion|0d 0a|"; reference:url,vrt-blog.snort.org/2012/12/quarian.html ; classtype:trojan-activity; sid:2015999; rev:4; metadata:created_at 2012_12_08, signature_severity Major, updated_at 2024_04_07;)
References
Metadata
created at2012_12_08
signature severityMajor
updated at2024_04_07
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!