alert dns $HOME_NET any -> any any (msg:"ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 13"; dns_query; content:"32player.com"; depth:12; nocase; isdataat:!1,relative; metadata: former_category MOBILE_MALWARE; reference:url,blog.talosintelligence.com/2018/07/Mobile-Malware-Campaign-uses-Malicious-MDM-Part2.html; classtype:trojan-activity; sid:2025903; rev:3; metadata:affected_product iOS, attack_target Mobile_Client, deployment Perimeter, signature_severity Critical, created_at 2018_07_25, malware_family iOS_Bahamut, updated_at 2019_03_12;)

Added 2019-03-12 17:53:59 UTC


alert dns $HOME_NET any -> any any (msg:"ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 13"; dns_query; content:"32player.com"; nocase; isdataat:!1,relative; metadata: former_category MOBILE_MALWARE; reference:url,blog.talosintelligence.com/2018/07/Mobile-Malware-Campaign-uses-Malicious-MDM-Part2.html; classtype:trojan-activity; sid:2025903; rev:2; metadata:affected_product iOS, attack_target Mobile_Client, deployment Perimeter, signature_severity Critical, created_at 2018_07_25, malware_family iOS_Bahamut, updated_at 2018_07_25;)

Added 2018-09-13 19:55:00 UTC


Added 2018-09-13 18:02:21 UTC


alert dns $HOME_NET any -> any any (msg:"ET MOBILE_MALWARE iOS/Bahamut DNS Lookup 13"; dns_query; content:"32player.com"; nocase; isdataat:!1,relative; metadata: former_category MOBILE_MALWARE; reference:url,blog.talosintelligence.com/2018/07/Mobile-Malware-Campaign-uses-Malicious-MDM-Part2.html; classtype:trojan-activity; sid:2025903; rev:2; metadata:affected_product iOS, attack_target Mobile_Client, deployment Perimeter, signature_severity Critical, created_at 2018_07_25, malware_family iOS_Bahamut, updated_at 2018_07_25;)

Added 2018-07-25 17:22:01 UTC


Topic revision: r1 - 2019-03-12 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats