Incident Live 2146 / 2146
마지막 조회: 09:08:51
0개 선택됨
NEW 인시던트
4 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #1246 | Resolved | HIGH | 'Script Engine Activity - 2909583408' along with 4 other iss... | book-r0be6s1nc3, teahee | Windows | 5 | 01-10 23:39 | 01-11 00:30 | - | |
| #1245 | Resolved | HIGH | 'Bypass Attempt - 911079455' along with 6 other issues gener... | dwshin | Windows | 7 | 01-10 22:56 | 01-11 18:49 | - | |
| #1244 | resolved_duplicate_incident | HIGH | 'File Drop - 2775215878' along with 5 other issues generated... | dwshin | Windows | 6 | 01-10 21:53 | 01-10 22:50 | - | |
| #1243 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 7 other issues... | book-r0be6s1nc3, teahee | Windows | 8 | 01-10 21:20 | 01-11 18:49 | - | |
| #1242 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 6 | 01-10 21:11 | 01-10 21:40 | - | |
| #1241 | Resolved | HIGH | 'Process Injection - 288965039' along with 268 other issues ... | in-bridge-40, inbridge-42 +1 | Linux | 269 | 01-10 20:41 | 01-11 19:55 | - | |
| #1240 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 260 other ... | in-bridge-40, inbridge-42 +1 | Linux | 261 | 01-10 20:41 | 01-11 18:49 | - | |
| #1239 | Resolved | HIGH | 'Process Injection - 288965039' along with 2 other issues ge... | in-bridge-40, inbridge-42 | Linux | 3 | 01-10 20:40 | 01-10 20:40 | - | |
| #1238 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-10 20:36 | 01-10 22:50 | - | |
| #1237 | Resolved | HIGH | 'Persistency - 779040014' along with 1 other issue generated... | inbridge-ubt-24 | Linux | 2 | 01-10 20:32 | 01-10 20:40 | - | |
| #1236 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-10 20:22 | 01-10 20:50 | - | |
| #1235 | Other | HIGH | 'Regsvr32 may have run code from an untrusted source' along ... | book-r0be6s1nc3 | Windows | 7 | 01-10 20:02 | 01-10 20:20 | - | |
| #1234 | False Positive | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-10 20:01 | 01-10 20:20 | - | |
| #1233 | Resolved | HIGH | 'Persistency - 456694134' along with 4 other issues generate... | inbridge-ubt-24 | Linux | 5 | 01-10 20:00 | 01-10 20:41 | - | |
| #1232 | Resolved | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | book-r0be6s1nc3 | Windows | 5 | 01-10 19:51 | 01-10 20:00 | - | |
| #1231 | Resolved | HIGH | 'Process Injection - 288965039' along with 6 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 7 | 01-10 19:37 | 01-10 20:40 | - | |
| #1230 | resolved_duplicate_incident | HIGH | 'Network Connection - 1971152322' along with 6 other issues ... | book-r0be6s1nc3 | Windows | 7 | 01-10 19:29 | 01-10 19:50 | - | |
| #1229 | resolved_duplicate_incident | HIGH | 'Powershell Activity - 3083271452' along with 4 other issues... | dwshin | Windows | 5 | 01-10 19:26 | 01-10 19:50 | - | |
| #1228 | Resolved | HIGH | 'Network Connection - 1971152322' along with 7 other issues ... | book-r0be6s1nc3 | Windows | 8 | 01-10 19:07 | 01-10 19:20 | - | |
| #1227 | Other | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | dwshin | Windows | 5 | 01-10 18:51 | 01-10 19:20 | - | |
| #1226 | Other | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-10 18:09 | 01-10 20:30 | - | |
| #1225 | Resolved | HIGH | 'Powershell Activity - 3083271452' along with 13 other issue... | dwshin | Windows | 14 | 01-10 17:55 | 01-10 18:44 | - | |
| #1224 | Resolved | HIGH | Certutil.exe downloads a suspicious file | dwshin | Windows | 1 | 01-10 17:20 | 01-10 17:37 | - | |
| #1223 | Resolved | HIGH | 'Ransomware Activity - 426137677' along with 5 other issues ... | dwshin | Windows | 6 | 01-10 16:52 | 01-10 17:14 | - | |
| #1222 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 2 other issues ge... | teahee | Windows | 3 | 01-10 16:38 | 01-10 17:37 | - | |
| #1221 | Resolved | HIGH | 'Ransomware Activity - 426137677' along with 4 other issues ... | dwshin | Windows | 5 | 01-10 16:10 | 01-10 16:39 | - | |
| #1220 | Resolved | HIGH | 'Persistency - 779040014' along with 2 other issues generate... | inbridge-ubt-24 | Linux | 3 | 01-10 15:50 | 01-10 17:37 | - | |
| #1219 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 5 other is... | inbridge-42, inbridge-ubt-24 | Linux | 6 | 01-10 15:47 | 01-10 15:49 | - | |
| #1218 | Resolved | HIGH | 'Process Injection - 288965039' along with 14 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 15 | 01-10 15:46 | 01-10 15:49 | - | |
| #1217 | Resolved | HIGH | 'Script Activity - 3055004603' along with 4 other issues gen... | dwshin | Windows | 5 | 01-10 15:42 | 01-10 16:09 | - | |
| #1216 | Resolved | HIGH | 'Persistency - 779040014' along with 26 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 27 | 01-10 15:28 | 01-10 15:44 | - | |
| #1215 | Resolved | HIGH | 'Persistency - 1983659418' along with 5 other issues generat... | teahee | Windows | 6 | 01-10 15:21 | 01-10 16:29 | - | |
| #1214 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-10 15:13 | 01-10 15:23 | - | |
| #1213 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 4 other is... | in-bridge-40, inbridge-42 +1 | Linux | 5 | 01-10 15:10 | 01-10 15:18 | - | |
| #1212 | Resolved | HIGH | 'Process Injection - 288965039' along with 11 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 12 | 01-10 15:10 | 01-10 15:13 | - | |
| #1211 | Resolved | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | dwshin | Windows | 5 | 01-10 15:07 | 01-10 15:28 | - | |
| #1210 | Resolved | HIGH | 'Persistency - 779040014' along with 8 other issues generate... | inbridge-42, inbridge-ubt-24 | Linux | 9 | 01-10 14:53 | 01-10 15:08 | - | |
| #1209 | Resolved | HIGH | 'Script Engine Activity - 2909583408' along with 4 other iss... | dwshin | Windows | 5 | 01-10 14:52 | 01-10 15:03 | - | |
| #1208 | Resolved | HIGH | 'Process Injection - 288965039' along with 18 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 19 | 01-10 14:46 | 01-10 14:58 | - | |
| #1207 | Resolved | HIGH | 'Process Injection - 288965039' along with 10 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 11 | 01-10 14:43 | 01-10 14:53 | - | |
| #1206 | Resolved | HIGH | 'Process Injection - 288965039' along with 19 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 20 | 01-10 14:40 | 01-10 14:43 | - | |
| #1205 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 6 | 01-10 14:32 | 01-10 14:48 | - | |
| #1204 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 5 | 01-10 14:30 | 01-10 14:33 | - | |
| #1203 | Resolved | HIGH | 'Persistency - 456694134' along with 4 other issues generate... | inbridge-ubt-24 | Linux | 5 | 01-10 14:28 | 01-10 14:33 | - | |
| #1202 | Resolved | HIGH | 'Impair Defenses - 2363038651' along with 4 other issues gen... | teahee | Windows | 5 | 01-10 14:28 | 01-10 15:08 | - | |
| #1201 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 13 other i... | in-bridge-40, inbridge-42 +1 | Linux | 14 | 01-10 14:21 | 01-10 14:28 | - | |
| #1200 | Resolved | HIGH | 'Persistency - 456694134' along with 11 other issues generat... | in-bridge-40, inbridge-ubt-24 | Linux | 12 | 01-10 14:21 | 01-10 14:23 | - | |
| #1199 | Resolved | HIGH | 'Process Injection - 288965039' along with 9 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 10 | 01-10 14:20 | 01-10 14:20 | - | |
| #1198 | Resolved | HIGH | 'Persistency - 779040014' along with 2 other issues generate... | inbridge-ubt-24 | Linux | 3 | 01-10 14:19 | 01-10 14:20 | - | |
| #1197 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-10 13:50 | 01-10 14:18 | - |