ET EXPLOIT_KIT Sweet Orange Landing with Applet Aug 30 2013

7.0.35.0SID: 2017405Rev: 8Disabled22 views
Sourceet/open
Fileemerging-exploit_kit.rules
CreatedSeptember 3, 2013
UpdatedMarch 14, 2024
Classificationexploit-kit
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT_KIT Sweet Orange Landing with Applet Aug 30 2013"; flow:established,to_client; flowbits:set,et.exploitkitlanding; file.data; content:"var pp100"; fast_pattern; content:"document.write("; distance:0; pcre:"/^[\r\n\s]*?[\x22\x27]<(?:[\x27\x22]\s*?\+\s*?[\x22\x27])?a(?:[\x27\x22]\s*?\+\s*?[\x22\x27])?p(?:[\x27\x22]\s*?\+\s*?[\x22\x27])?p(?:[\x27\x22]\s*?\+\s*?[\x22\x27])?l(?:[\x27\x22]\s*?\+\s*?[\x22\x27])?e(?:[\x27\x22]\s*?\+\s*?[\x27\x22])?t/Ri"; classtype:exploit-kit; sid:2017405; rev:8; metadata:created_at 2013_09_03, signature_severity Major, updated_at 2024_03_14;)

Metadata

created at2013_09_03
signature severityMajor
updated at2024_03_14

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!