alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET TROJAN Likely PadCrypt? Locker PKG DL"; flow:established,to_server; content:".pdcr"; http_uri; nocase; pcre:"/\.pdcr$/Ui"; content:!"Referer|3a|"; http_header; reference:md5,b6d25a5629221041e857266b9188ea3b; classtype:trojan-activity; sid:2022568; rev:2; metadata:created_at 2016_02_26, updated_at 2020_06_24;)

Added 2021-09-21 20:00:33 UTC


alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET TROJAN Likely PadCrypt? Locker PKG DL"; flow:established,to_server; content:".pdcr"; http_uri; nocase; pcre:"/\.pdcr$/Ui"; content:!"Referer|3a|"; http_header; reference:md5,b6d25a5629221041e857266b9188ea3b; classtype:trojan-activity; sid:2022568; rev:2; metadata:created_at 2016_02_25, updated_at 2020_06_24;)

Added 2020-06-24 19:08:31 UTC


alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET TROJAN Likely PadCrypt? Locker PKG DL"; flow:established,to_server; content:".pdcr"; http_uri; nocase; pcre:"/\.pdcr$/Ui"; content:!"Referer|3a|"; http_header; reference:md5,b6d25a5629221041e857266b9188ea3b; classtype:trojan-activity; sid:2022568; rev:2; metadata:created_at 2016_02_25, updated_at 2016_02_25;)

Added 2018-09-13 19:52:20 UTC


Added 2018-09-13 18:00:46 UTC


alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET TROJAN Likely PadCrypt? Locker PKG DL"; flow:established,to_server; content:".pdcr"; http_uri; nocase; pcre:"/\.pdcr$/Ui"; content:!"Referer|3a|"; http_header; reference:md5,b6d25a5629221041e857266b9188ea3b; classtype:trojan-activity; sid:2022568; rev:2; metadata:created_at 2016_02_25, updated_at 2016_02_25;)

Added 2017-08-07 21:17:29 UTC


alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET TROJAN Likely PadCrypt? Locker PKG DL"; flow:established,to_server; content:".pdcr"; http_uri; nocase; pcre:"/\.pdcr$/Ui"; content:!"Referer|3a|"; http_header; reference:md5,b6d25a5629221041e857266b9188ea3b; classtype:trojan-activity; sid:2022568; rev:2;)

Added 2016-02-25 19:39:23 UTC


alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET TROJAN Likely PadCrypt? Locker PKG DL"; flow:established,to_server; content:".pdcr"; http_uri; nocase; pcre:"/\.pdcr$/Ui"; content:!"Referer|3a|"; http_header; reference:md5,b6d25a5629221041e857266b9188ea3b; classtype:trojan-activity; sid:2022568; rev:2;)

Added 2016-02-25 17:45:42 UTC


Topic revision: r1 - 2021-09-22 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats