ET MALWARE W32/BaneChant.APT Winword.pkg Redirect
Sourceet/open
Fileemerging-malware.rules
CreatedApril 4, 2013
UpdatedMarch 15, 2024
Classificationtargeted-activity
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET MALWARE W32/BaneChant.APT Winword.pkg Redirect"; flow:established,to_client ; http.stat_code; content:"301"; http.location; content:"/update/winword.pkg"; fast_pattern; reference:url,www.fireeye.com/blog/technical/malware-research/2013/04/trojan-apt-banechant-in-memory-trojan-that-observes-for-multiple-mouse-clicks.html ; classtype:targeted-activity; sid:2016713; rev:4; metadata:created_at 2013_04_04, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_15;)
Metadata
created at2013_04_04
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_15
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!