""ET TROJAN Sourtoff Receiving Simda Payload""
SID: 2019313
Revision: 3
Class Type: trojan-activity
Metadata: created_at 2014_09_29, updated_at 2018_01_08
Reference:
-
md5
-
5469af0daa10f8acbe552cd2f1f6a6bb
Protocol: tcp
Source Network: $EXTERNAL_NET
Source Port: 20000:
Destination Network: $HOME_NET
Destination Port: 1024:
Flow: established,from_server
Contents:
- Value: "|0a c0|" Depth: 2
Within:
PCRE:
Special Options: