ET MALWARE W32/BaneChant.APT Winword.pkg Redirect

7.0.35.0SID: 2016713Rev: 4Enabled2 views
Sourceet/open
Fileemerging-malware.rules
CreatedApril 4, 2013
UpdatedMarch 15, 2024
Classificationtargeted-activity
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET MALWARE W32/BaneChant.APT Winword.pkg Redirect"; flow:established,to_client; http.stat_code; content:"301"; http.location; content:"/update/winword.pkg"; fast_pattern; reference:url,www.fireeye.com/blog/technical/malware-research/2013/04/trojan-apt-banechant-in-memory-trojan-that-observes-for-multiple-mouse-clicks.html; classtype:targeted-activity; sid:2016713; rev:4; metadata:created_at 2013_04_04, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_15;)

Metadata

created at2013_04_04
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_15

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!