James_inthe_box

Hvnc snort/suricata sig

James_inthe_box

Jun 28th, 2019

1,067

0

Never

Add comment

Not a member of Pastebin yet? Sign Up, it unlocks many cool features!

text 0.23 KB | None | 0 0

raw download clone embed print report

alert tcp any any -> any 443 (msg:"HVNC Variant 3 Checkin"; flow:established,to_server; dsize:<200; content:"|2d 55 53 52 2d|"; offset:4 ; depth:20; rawbytes; classtype:trojan-activity; sid:20166296; rev:1; metadata:created_at 2019_06_28;)

Add Comment

Please, Sign In to add comment

Public Pastes

Input_AOC
52 min ago | 18.01 KB
Untitled
14 hours ago | 13.15 KB
Analog GPUs: THE FUTURE
20 hours ago | 8.88 KB
Quotes I believe to be true.
20 hours ago | 0.16 KB
Die 7 wichtigsten Aktionen diese Woche
1 day ago | 4.17 KB
Untitled
1 day ago | 13.34 KB
Untitled
1 day ago | 13.59 KB
VNC SCRIPT 2/2: autoinput.vbs
VBScript | 1 day ago | 0.23 KB