MALWARE-OTHER --
MALWARE-OTHER Win.Trojan.Masslogger download request attempt
This rule is looking for Masslogger's C2 callout of a fake jpeg, which is actually additional malicious code.
This rule alerts when a PC infected with Masslogger reaches out for an addition file from its C2.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
None
No information provided
None
Tactic: Command and Control
Technique: Commonly Used Port
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org
©2025 Cisco and/or its affiliates. Snort, the Snort and Pig logo are registered trademarks of Cisco. All rights reserved.
