ET MOBILE_MALWARE Trojan.AndroidOS.TimpDoor Module Download Request
Sourceet/open
Fileemerging-mobile_malware.rules
CreatedAugust 6, 2019
UpdatedApril 28, 2024
Classificationtrojan-activity
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET MOBILE_MALWARE Trojan.AndroidOS.TimpDoor Module Download Request"; flow:established,to_server ; http.uri; content:"/?uuid="; content:"&ptype="; content:"&cacheFrom="; fast_pattern; http.user_agent; content:"|3b 20|Android|20|"; http.header_names; to_lowercase; content:!"|0d 0a|referer|0d 0a|"; reference:md5,5faad53df0fa1f4d5c199b49c77025eb ; classtype:trojan-activity; sid:2027803; rev:5; metadata:affected_product Android, attack_target Mobile_Client, created_at 2019_08_06, deployment Perimeter, malware_family Android_TimpDoor, confidence High, signature_severity Critical, tag Android, updated_at 2024_04_28;)
References
| md5 | 5faad53df0fa1f4d5c199b49c77025eb |
Metadata
affected productAndroid
attack targetMobile_Client
created at2019_08_06
deploymentPerimeter
malware familyAndroid_TimpDoor
confidenceHigh
signature severityCritical
tagAndroid
updated at2024_04_28
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!