Incident Live 2146 / 2146
마지막 조회: 02:39:58
0개 선택됨
NEW 인시던트
4 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #1696 | Resolved | MEDIUM | 'WildFire Malware' along with 2 other issues generated by XD... | teahee | Windows | 3 | 01-15 12:08 | 01-15 13:58 | - | |
| #1695 | Resolved | HIGH | 'Credential Gathering Protection - 510630382' along with 4 o... | dwshin | Windows | 5 | 01-15 11:49 | 01-15 12:10 | - | |
| #1694 | Resolved | HIGH | 'File Drop - 1815185192' along with 4 other issues generated... | dwshin | Windows | 5 | 01-15 11:19 | 01-15 11:45 | - | |
| #1693 | Resolved | HIGH | 'Process Injection - 288965039' along with 7 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 8 | 01-15 10:57 | 01-15 11:04 | - | |
| #1692 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | dwshin | Windows | 5 | 01-15 10:43 | 01-15 11:15 | - | |
| #1691 | Resolved | HIGH | 'Persistency - 456694134' along with 5 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 6 | 01-15 10:36 | 01-15 10:59 | - | |
| #1690 | Resolved | HIGH | 'Persistency - 456694134' along with 5 other issues generate... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-15 10:25 | 01-15 10:34 | - | |
| #1689 | Resolved | HIGH | 'Process Injection - 288965039' along with 10 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 11 | 01-15 10:25 | 01-15 10:29 | - | |
| #1688 | Resolved | HIGH | 'Process Injection - 288965039' along with 10 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 11 | 01-15 10:20 | 01-15 10:24 | - | |
| #1687 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 5 other is... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-15 10:19 | 01-15 10:24 | - | |
| #1686 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-ubt-24 | Linux | 5 | 01-15 10:11 | 01-15 10:14 | - | |
| #1685 | Resolved | HIGH | 'Persistency - 456694134' along with 6 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 7 | 01-15 10:10 | 01-15 10:14 | - | |
| #1684 | Resolved | HIGH | 'Persistency - 456694134' along with 6 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 7 | 01-15 10:07 | 01-15 10:09 | - | |
| #1683 | Resolved | HIGH | 'Process Injection - 288965039' along with 6 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 7 | 01-15 10:07 | 01-15 10:09 | - | |
| #1682 | Resolved | HIGH | Suspicious cron job using a base64 payload | in-bridge-40 | Linux | 1 | 01-15 10:02 | 01-15 10:07 | - | |
| #1681 | Resolved | HIGH | 'File Drop - 3732557733' along with 5 other issues generated... | dwshin | Windows | 6 | 01-15 10:02 | 01-15 10:34 | - | |
| #1680 | Resolved | HIGH | 'Persistency - 779040014' along with 3 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 4 | 01-15 10:00 | 01-15 10:07 | - | |
| #1679 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | inbridge-42 | Linux | 6 | 01-15 09:47 | 01-15 10:07 | - | |
| #1678 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-15 09:37 | 01-15 11:50 | - | |
| #1677 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 4 other issues ge... | dwshin | Windows | 5 | 01-15 09:34 | 01-15 09:58 | - | |
| #1676 | Resolved | HIGH | 'Persistency - 779040014' along with 4 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 5 | 01-15 09:33 | 01-15 09:38 | - | |
| #1675 | Resolved | HIGH | 'Process Injection - 288965039' along with 6 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 7 | 01-15 09:33 | 01-15 09:38 | - | |
| #1674 | Resolved | HIGH | Process executes an obfuscated command for fetching remote f... | in-bridge-40 | Linux | 1 | 01-15 09:32 | 01-15 09:33 | - | |
| #1673 | Resolved | HIGH | 'Persistency - 456694134' along with 3 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 4 | 01-15 09:30 | 01-15 09:32 | - | |
| #1672 | Resolved | MEDIUM | 'Perl script connecting to network' along with 1 other issue... | inbridge-42, inbridge-ubt-24 | Linux | 2 | 01-15 09:21 | 01-15 09:33 | - | |
| #1671 | Resolved | HIGH | 'Persistency - 779040014' along with 6 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 7 | 01-15 09:00 | 01-15 09:18 | - | |
| #1670 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 17 other i... | in-bridge-40, inbridge-42 +1 | Linux | 18 | 01-15 08:47 | 01-15 09:03 | - | |
| #1669 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 5 | 01-15 08:47 | 01-15 08:48 | - | |
| #1668 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | dwshin | Windows | 5 | 01-15 08:45 | 01-15 09:28 | - | |
| #1667 | Resolved | HIGH | 'Process Injection - 288965039' along with 7 other issues ge... | inbridge-ubt-24 | Linux | 8 | 01-15 08:23 | 01-15 08:33 | - | |
| #1666 | Resolved | HIGH | 'Persistency - 779040014' along with 1 other issue generated... | inbridge-ubt-24 | Linux | 2 | 01-15 08:20 | 01-15 08:23 | - | |
| #1665 | Resolved | HIGH | Process executes an obfuscated command for fetching remote f... | inbridge-42 | Linux | 1 | 01-15 08:19 | 01-15 08:23 | - | |
| #1664 | Resolved | HIGH | 'Process Injection - 288965039' along with 3 other issues ge... | in-bridge-40, inbridge-42 | Linux | 4 | 01-15 08:17 | 01-15 08:23 | - | |
| #1663 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 5 other issues ge... | dwshin | Windows | 6 | 01-15 08:17 | 01-15 08:40 | - | |
| #1662 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 6 | 01-15 07:35 | 01-15 08:07 | - | |
| #1661 | Resolved | HIGH | 'Persistency - 779040014' along with 4 other issues generate... | inbridge-ubt-24 | Linux | 5 | 01-15 07:21 | 01-15 07:32 | - | |
| #1660 | Resolved | HIGH | 'Process Injection - 288965039' along with 6 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 7 | 01-15 07:21 | 01-15 08:10 | - | |
| #1659 | Resolved | HIGH | 'Process Injection - 288965039' along with 14 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 15 | 01-15 07:00 | 01-15 07:07 | - | |
| #1658 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-15 06:53 | 01-15 09:00 | - | |
| #1657 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 4 other issues ge... | dwshin | Windows | 5 | 01-15 06:46 | 01-15 07:27 | - | |
| #1656 | Resolved | HIGH | 'Persistency - 456694134' along with 5 other issues generate... | inbridge-ubt-24 | Linux | 6 | 01-15 06:38 | 01-15 07:01 | - | |
| #1655 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 5 | 01-15 06:30 | 01-15 06:31 | - | |
| #1654 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 12 other i... | in-bridge-40, inbridge-42 +1 | Linux | 13 | 01-15 06:22 | 01-15 06:36 | - | |
| #1653 | Resolved | HIGH | 'File Drop - 3732557733' along with 5 other issues generated... | dwshin | Windows | 6 | 01-15 06:18 | 01-15 06:36 | - | |
| #1652 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 4 other is... | in-bridge-40, inbridge-42 | Linux | 5 | 01-15 06:01 | 01-15 06:06 | - | |
| #1651 | Resolved | HIGH | 'Persistency - 779040014' along with 6 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 7 | 01-15 06:01 | 01-15 06:26 | - | |
| #1650 | Resolved | HIGH | 'Process Injection - 288965039' along with 7 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 8 | 01-15 06:00 | 01-15 06:01 | - | |
| #1649 | Resolved | HIGH | 'Persistency - 779040014' along with 8 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 9 | 01-15 06:00 | 01-15 06:01 | - | |
| #1648 | Resolved | HIGH | 'File Drop - 2775215878' along with 4 other issues generated... | dwshin | Windows | 5 | 01-15 05:43 | 01-15 06:11 | - | |
| #1647 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 6 other is... | inbridge-ubt-24 | Linux | 7 | 01-15 05:31 | 01-15 05:50 | - |