""ET TROJAN Backdoor.Win32.RShot Ping Outbound""
SID: 2014270
Revision: 3
Class Type: trojan-activity
Metadata: created_at 2012_02_21, updated_at 2014_04_28
Reference:
-
md5
-
adf4c3a16f5f6d4baa634b2c50bf7454
Protocol: icmp
Source Network: $HOME_NET
Source Port: any
Destination Network: any
Destination Port: any
Flow:
Contents:
- Value: "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
Within:
PCRE:
Special Options: