alert dns $HOME_NET any -> any any (msg:"ET MOBILE_MALWARE Windows Phone PUA.Redpher (myservicessapps .com in DNS Lookup)"; dns_query; content:"myservicessapps.com"; isdataat:!1,relative; metadata: former_category MOBILE_MALWARE; reference:url,www.symantec.com/blogs/threat-intelligence/pua-microsoft-store-porn-gambling; classtype:trojan-activity; sid:2027220; rev:2; metadata:attack_target Mobile_Client, deployment Perimeter, signature_severity Major, created_at 2019_04_18, updated_at 2019_04_18;)

Added 2019-04-18 19:01:24 UTC


Topic revision: r1 - 2019-04-18 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats