Signature Detail

Short Name	TROJAN:PUSHDO-POST-CNC
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	TROJAN
Keywords	PushDo Post
Release Date	2013/05/29
Update Number	2268
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

This detects malicious HTTP POST submissions by the PushDo Trojan. The source IP is infected with PushDo and should be removed from the network.