MALWARE-BACKDOOR -- Snort has detected suspicious communication traffic unrelated to commands, such as exfiltration of data from the infected machine, especially larger chunks of data.
MALWARE-BACKDOOR BRX Rat 0.02 inbound connection
This event is generated when activity relating to malware is detected. Impact: Serious. Possible existance of malware on the target host. Details: This activity is indicative of malware activity on a host. In this case the MALWARE-BACKDOOR BRX Rat 0.02 inbound connection was detected. Ease of Attack: Simple. This may be an indication of a malware infestation.
No information provided
No public information
No known false positives
Cisco Talos
No rule groups
None
No information provided
None