Rule Info
Name
LOG_EXPL_MOVEit_Exploitation_Indicator_Jun23_1
Author
Florian Roth
Description
Detects a potential compromise indicator found in MOVEit Transfer logs
Score
70
Date
2023-06-01
Minimum Yara
1.7
Rule Hash
4d336d227338ec3b3a300b95079a6e47
Tags
['EXPLOIT', 'LOG', 'DEMO']
Required Modules
[]
Virustotal Matches
Antivirus Verdicts
Rating
Number of Samples
Malicious (>= 10 engines)
0
Suspicious (< 10 engines)
0
Clean (0 engines)
0