ET MALWARE APT CozyCar SSL Cert 7
Sourceet/open
Fileemerging-malware.rules
CreatedJuly 15, 2015
UpdatedApril 7, 2024
Classificationtargeted-activity
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"ET MALWARE APT CozyCar SSL Cert 7"; flow:established,to_client ; tls.cert_subject; content:"redbluffchamber.com"; reference:url,researchcenter.paloaltonetworks.com/2015/07/tracking-minidionis-cozycars-new-ride-is-related-to-seaduke/ ; classtype:targeted-activity; sid:2021424; rev:5; metadata:attack_target Client_Endpoint, created_at 2015_07_15, deployment Perimeter, deprecation_reason Relevance, confidence High, signature_severity Major, tag SSL_Malicious_Cert, updated_at 2024_04_07, reviewed_at 2024_03_28;)
References
Metadata
attack targetClient_Endpoint
created at2015_07_15
deploymentPerimeter
deprecation reasonRelevance
confidenceHigh
signature severityMajor
tagSSL_Malicious_Cert
updated at2024_04_07
reviewed at2024_03_28
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!