ET MALWARE Miuref/Boaxxe Checkin
Sourceet/open
Fileemerging-malware.rules
CreatedNovember 8, 2014
UpdatedApril 28, 2024
Classificationcommand-and-control
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Miuref/Boaxxe Checkin"; flow:established,to_server ; http.method; content:"POST"; nocase; http.header_names; to_lowercase; content:!"|0d 0a|referer|0d 0a|"; http.request_body; content:"bB"; offset:2; depth:2; content:"MqrU"; within:20; content:"VAMU"; within:29; fast_pattern; reference:md5,79d1c8c33062324388d3d563f193a43b ; reference:md5,ee3c562151cc9181c6d87602bbf0a285 ; reference:md5,a42797315c50e335f3de87f6cea61b77 ; classtype:command-and-control; sid:2019683; rev:9; metadata:created_at 2014_11_08, signature_severity Major, updated_at 2024_04_28;)
References
| md5 | 79d1c8c33062324388d3d563f193a43b |
| md5 | ee3c562151cc9181c6d87602bbf0a285 |
| md5 | a42797315c50e335f3de87f6cea61b77 |
Metadata
created at2014_11_08
signature severityMajor
updated at2024_04_28
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!