MALWARE-OTHER --
MALWARE-OTHER Win.Dropper.PyVil outbound communication attempt
This rule detects an outbound communication attempt from a variant of Win.Dropper.PyVil by looking for specific patterns in the outbound URI.
This rule detects an outbound communication attempt from a variant of Win.Dropper.PyVil.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
None
No information provided
None
Tactic: Initial Access
Technique: Spearphishing Attachment
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org