SID 1:53090

Report a false positive

Rule Category

MALWARE-TOOLS --

Alert Message

MALWARE-TOOLS Malicious HTML application download attempt

Rule Explanation

This event is generated when an attempt to download a malicious HTML application has been detected. Impact: High Details: A malicious documents campaign has been identified to be spread using malicious RTF documents and HTML applications. This rule will detect any communication related with that campaign and the attempts of stealing information from the victim's computer Ease of Attack: Medium

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

CVE-2017-11882

Additional Links

virustotal.com/en/file/d667c0c158786889fafa273d81bce9980bdc6ab54ea58bd2a558e248598158ac/analysis/

Rule Vulnerability

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2017-11882
 Loading description