Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: SID 32186

From: Nick Randolph <drandolph () sourcefire com>
Date: Wed, 15 Oct 2014 11:54:49 -0400
It's a piece of the compressed OLE object that references the external site
for the .inf file.

On Wed, Oct 15, 2014 at 11:06 AM, Jeremy Scott <JeremyScott () solutionary com>
wrote:


Can someone explain the context of the |75 FD 41 63 B2 CF 01 E3 02 89 60
63 B2 CF 01 E3| in SID 32186 and 32187?

Jeremy


------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!





-- 

Nick Randolph
Research Engineer
Sourcefire, Inc.
nrandolph () sourcefire com
Sourcefire.com <http://www.sourcefire.com/>

------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: