ET MALWARE Bioazih RAT Checkin
Sourceet/open
Fileemerging-malware.rules
CreatedApril 16, 2015
UpdatedApril 7, 2024
Classificationcommand-and-control
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MALWARE Bioazih RAT Checkin"; flow:established,to_server ; http.user_agent; content:"Pass|3a|"; startswith; content:"Hostname|3a|"; content:"Ip|3a|"; content:"Os|3a|"; content:"Proxy|3a|"; fast_pattern; content:"Vm|3a|"; reference:md5,7bc5451341a684aca80a59a463bad973 ; reference:md5,5443cf2b6c010c57cf740356c9167b77 ; reference:url,blogs.technet.com/b/mmpc/archive/2015/04/13/bioazih-rat-how-clean-file-metadata-can-help-keep-you-safe.aspx ; classtype:command-and-control; sid:2020927; rev:7; metadata:created_at 2015_04_16, signature_severity Major, updated_at 2024_04_07;)
References
| md5 | 7bc5451341a684aca80a59a463bad973 |
| md5 | 5443cf2b6c010c57cf740356c9167b77 |
| url | blogs.technet.com/b/mmpc/archive/2015/04/13/bioazih-rat-how-clean-file-metadata-can-help-keep-you-safe.aspx |
Metadata
created at2015_04_16
signature severityMajor
updated at2024_04_07
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!