sid 2001472
format suricata
et-open
pup-activity
ET ADWARE_PUP Searchmeup Spyware Install (prog)
sid 2001474
format suricata
et-open
pup-activity
ET ADWARE_PUP Searchmeup Spyware Install (systime)
sid 2001480
format suricata
et-open
pup-activity
ET ADWARE_PUP Searchmeup Spyware Install (mstask)
sid 2001483
format suricata
sid 2001533
format suricata
sid 2001534
format suricata
sid 2001535
format suricata
et-open
pup-activity
ET ADWARE_PUP Context Plus Spyware Install
sid 2001704
format suricata
sid 2002092
format suricata
sid 2002098
format suricata
sid 2002737
format suricata
et-open
pup-activity
ET ADWARE_PUP Best-targeted-traffic.com Spyware Install
sid 2003210
format suricata
et-open
pup-activity
ET ADWARE_PUP Morpheus Spyware Install User-Agent (SmartInstaller)
sid 2003398
format suricata
et-open
pup-activity
ET ADWARE_PUP clickspring.com Spyware Install User-Agent (CS Fingerprint Module)
sid 2003425
format suricata
et-open
pup-activity
ET ADWARE_PUP Surfaccuracy.com Spyware Install User-Agent (SF Installer)
sid 2003428
format suricata
et-open
pup-activity
ET ADWARE_PUP Dropspam.com Spyware Install User-Agent (DSInstall)
sid 2003439
format suricata
et-open
pup-activity
ET ADWARE_PUP Deskwizz.com Spyware Install INI Download
sid 2003445
format suricata
et-open
bad-unknown
ET ADWARE_PUP Socelars Related Domain in DNS Lookup
sid 2033607
format suricata
sid 2046045
format suricata
et-open
trojan-activity
ET MALWARE Redline Stealer/MetaStealer Family Activity (Response)
sid 2046056
format suricata
sid 2046105
format suricata
sid 2046106
format suricata
sid 2046266
format suricata
sid 2046267
format suricata
sid 2046268
format suricata
sid 2046269
format suricata
sid 2046270
format suricata
et-open
trojan-activity
ET MALWARE RisePro TCP Heartbeat Packet
sid 2049060
format suricata
et-open
trojan-activity
ET RETIRED Win32/Fewin Stealer Data Exfiltration Attempt
sid 2049140
format suricata
et-open
trojan-activity
ET MALWARE RisePro CnC Activity (Outbound)
sid 2049660
format suricata
et-open
trojan-activity
ET MALWARE RisePro CnC Activity (Inbound)
sid 2049661
format suricata
et-open
trojan-activity
ET MALWARE Lumma Stealer Related Activity
sid 2049836
format suricata
et-open
trojan-activity
ET MALWARE Generic Stealer Checkin
sid 2049864
format suricata
et-open
trojan-activity
ET MALWARE Observed Lumma Stealer Related Domain in TLS SNI (referralpublicationjk .pw)
sid 2049915
format suricata
et-open
trojan-activity
ET MALWARE Lumma Stealer Related Domain in DNS Lookup (referralpublicationjk .pw)
sid 2049916
format suricata
sid 2050051
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer CnC Activity M2 (Check-in)
sid 2051447
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer CnC Activity M2 (System Information)
sid 2051448
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer CnC Activity M2 (Screenshot)
sid 2051449
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer Sending Browser Related Information (Google)
sid 2051450
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer Sending Browser Related Information (Firefox)
sid 2051451
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer Sending System Related Information (Thunderbird)
sid 2051452
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer Sending System Related Information
sid 2051453
format suricata
et-open
trojan-activity
ET MALWARE Win32/ObserverStealer Related Activity (POST)
sid 2051454
format suricata
sid 2052277
format suricata
sid 2064802
format suricata
sid 2064803
format suricata
sid 2064804
format suricata
sid 2064965
format suricata
sid 2064968
format suricata