ET WEB_CLIENT CritX/SafePack/FlashPack SilverLight Secondary Landing
Sourceet/open
Fileemerging-web_client.rules
CreatedMarch 8, 2014
UpdatedMarch 13, 2024
Classificationexploit-kit
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_CLIENT CritX/SafePack/FlashPack SilverLight Secondary Landing"; flow:established,to_client ; file.data; content:"/x-silverlight-2"; content:"aHR0cDov"; distance:0; pcre:"/^[A-Za-z0-9\+\/]+(?:(?:LmVvdA=|5lb3Q)=|uZW90)[\x22\x27]/Rsi" ; content:".eot"; classtype:exploit-kit; sid:2018236; rev:3; metadata:created_at 2014_03_08, signature_severity Minor, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_13;)
Metadata
created at2014_03_08
signature severityMinor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_13
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!