ET TA_ABUSED_SERVICES Commonly Abused File Sharing Domain (wasabi .com) in DNS Lookup

7.0.35.0SID: 2046653Rev: 3Enabled4 views
Sourceet/open
Fileemerging-ta_abused_services.rules
CreatedJune 26, 2023
UpdatedJune 27, 2024
Classificationmisc-activity
alert dns $HOME_NET any -> any any (msg:"ET TA_ABUSED_SERVICES Commonly Abused File Sharing Domain (wasabi .com) in DNS Lookup"; dns.query; bsize:10; content:"wasabi.com"; nocase; classtype:misc-activity; sid:2046653; rev:3; metadata:affected_product Any, attack_target Client_Endpoint, created_at 2023_06_26, deployment Perimeter, former_category FILE_SHARING, performance_impact Low, confidence High, signature_severity Informational, tag FileSharing_Services, updated_at 2024_06_27, reviewed_at 2023_10_06;)

Metadata

affected productAny
attack targetClient_Endpoint
created at2023_06_26
deploymentPerimeter
former categoryFILE_SHARING
performance impactLow
confidenceHigh
signature severityInformational
tagFileSharing_Services
updated at2024_06_27
reviewed at2023_10_06

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!