Incident Live 2146 / 2146
마지막 조회: 12:48:59
0개 선택됨
NEW 인시던트
4 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #1051 | Resolved | HIGH | 'Command-line arguments match Mimikatz execution' along with... | book-r0be6s1nc3 | Windows | 3 | 01-08 16:49 | 01-08 16:57 | - | |
| #1052 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 2 other issues... | dwshin | Windows | 3 | 01-08 16:50 | 01-08 16:57 | - | |
| #1053 | Resolved | HIGH | 'Process Injection - 288965039' along with 40 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 41 | 01-08 17:00 | 01-08 17:20 | - | |
| #1054 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 5 o... | dwshin | Windows | 6 | 01-08 17:02 | 01-08 17:20 | - | |
| #1055 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | book-r0be6s1nc3 | Windows | 4 | 01-08 17:02 | 01-08 17:20 | - | |
| #1056 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-08 17:09 | 01-08 19:17 | - | |
| #1057 | Resolved | HIGH | Suspicious script engine arguments in command line | book-r0be6s1nc3 | Windows | 1 | 01-08 17:28 | 01-09 08:57 | - | |
| #1058 | Resolved | HIGH | 'Persistency - 779040014' along with 14 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 15 | 01-08 17:30 | 01-08 17:34 | - | |
| #1059 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 4 o... | dwshin | Windows | 5 | 01-08 17:30 | 01-08 17:59 | - | |
| #1060 | Resolved | HIGH | 'Persistency - 779040014' along with 7 other issues generate... | inbridge-42, inbridge-ubt-24 | Linux | 8 | 01-08 17:59 | 01-08 18:04 | - | |
| #1061 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 5 | 01-08 18:00 | 01-08 18:04 | - | |
| #1062 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 11 | 01-08 18:05 | 01-08 19:17 | - | |
| #1063 | Resolved | HIGH | 'Process Injection - 288965039' along with 1 other issue gen... | inbridge-42 | Linux | 2 | 01-08 18:05 | 01-09 08:57 | - | |
| #1064 | Resolved | HIGH | Process executes an obfuscated command for fetching remote f... | in-bridge-40 | Linux | 1 | 01-08 18:16 | 01-09 08:57 | - | |
| #1065 | Resolved | HIGH | 'Malware Activity - 1320008962' along with 5 other issues ge... | dwshin | Windows | 6 | 01-08 19:22 | 01-08 20:12 | - | |
| #1066 | resolved_duplicate_incident | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-08 19:57 | 01-08 22:10 | - | |
| #1067 | Resolved | HIGH | 'Powershell Activity - 3083271452' along with 4 other issues... | dwshin | Windows | 5 | 01-08 20:18 | 01-08 20:41 | - | |
| #1068 | Resolved | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | dwshin | Windows | 5 | 01-08 20:46 | 01-08 21:07 | - | |
| #1069 | Resolved | HIGH | 'File Drop - 2775215878' along with 5 other issues generated... | dwshin | Windows | 6 | 01-08 21:14 | 01-08 21:33 | - | |
| #1070 | Resolved | HIGH | 'Staged Malware Activity - 2394207323' along with 4 other is... | dwshin | Windows | 5 | 01-08 21:35 | 01-08 21:58 | - | |
| #1071 | Resolved | HIGH | 'Bypass Attempt - 911079455' along with 4 other issues gener... | dwshin | Windows | 5 | 01-08 22:03 | 01-08 22:18 | - | |
| #1072 | Resolved | HIGH | 'SYNC - Credential Gathering - 1082701410' along with 4 othe... | dwshin | Windows | 5 | 01-08 22:20 | 01-08 22:33 | - | |
| #1073 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | teahee | Windows | 6 | 01-08 22:24 | 01-09 00:23 | - | |
| #1074 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 4 o... | dwshin | Windows | 5 | 01-08 22:52 | 01-08 23:14 | - | |
| #1075 | Resolved | HIGH | 'File Drop - 3732557733' along with 7 other issues generated... | dwshin | Windows | 8 | 01-08 23:20 | 01-09 00:23 | - | |
| #1076 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-09 00:30 | 01-09 03:22 | - | |
| #1077 | Resolved | HIGH | 'File Drop - 4219385159' along with 64 other issues generate... | dwshin | Windows | 65 | 01-09 00:30 | 01-09 08:25 | - | |
| #1078 | Other | MEDIUM | 'WildFire Malware' along with 5 other issues generated by XD... | teahee | Windows | 6 | 01-09 03:39 | 01-09 06:25 | - | |
| #1079 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-09 06:48 | 01-09 08:56 | - | |
| #1080 | Resolved | HIGH | 'Staged Malware Activity - 2394207323' along with 4 other is... | dwshin | Windows | 5 | 01-09 08:33 | 01-09 09:06 | - | |
| #1081 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 31 ... | dwshin | Windows | 32 | 01-09 09:08 | 01-09 12:43 | - | |
| #1082 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-09 09:09 | 01-09 11:30 | - | |
| #1083 | Resolved | HIGH | 'Persistency - 779040014' along with 80 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 81 | 01-09 11:05 | 01-09 12:43 | - | |
| #1084 | Resolved | MEDIUM | 'WildFire Malware' along with 1 other issue generated by XDR... | teahee | Windows | 2 | 01-09 12:03 | 01-09 12:45 | - | |
| #1085 | Resolved | HIGH | 'Credential Gathering Protection - 510630382' along with 4 o... | dwshin | Windows | 5 | 01-09 12:45 | 01-09 13:40 | - | |
| #1086 | Resolved | HIGH | 'Process Injection - 288965039' along with 999 other issues ... | in-bridge-40, inbridge-42 +1 | Linux | 1000 | 01-09 12:53 | 01-10 07:30 | - | |
| #1087 | Other | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-09 13:06 | 01-09 15:20 | - | |
| #1088 | Known Issue | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | dwshin | Windows | 5 | 01-09 13:41 | 01-09 14:10 | - | |
| #1089 | Known Issue | HIGH | 'Malware Activity - 1320008962' along with 6 other issues ge... | dwshin | Windows | 7 | 01-09 14:23 | 01-09 15:00 | - | |
| #1090 | Resolved | HIGH | 'File Drop - 3732557733' along with 4 other issues generated... | dwshin | Windows | 5 | 01-09 15:26 | 01-09 15:50 | - | |
| #1091 | False Positive | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-09 15:45 | 01-09 18:00 | - | |
| #1092 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 6 | 01-09 15:56 | 01-09 16:30 | - | |
| #1093 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-09 16:36 | 01-09 17:00 | - | |
| #1094 | Resolved | HIGH | 'Powershell Activity - 3083271452' along with 5 other issues... | dwshin | Windows | 6 | 01-09 17:02 | 01-09 17:20 | - | |
| #1095 | Other | HIGH | 'Evasion Technique - 527483761' along with 5 other issues ge... | dwshin | Windows | 6 | 01-09 17:25 | 01-09 18:10 | - | |
| #1096 | Resolved | HIGH | 'File Drop - 2775215878' along with 5 other issues generated... | dwshin | Windows | 6 | 01-09 18:14 | 01-09 18:40 | - | |
| #1097 | False Positive | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-09 18:21 | 01-09 20:30 | - | |
| #1098 | Known Issue | HIGH | 'Script Activity - 3055004603' along with 7 other issues gen... | dwshin | Windows | 8 | 01-09 18:42 | 01-09 19:20 | - | |
| #1099 | Other | HIGH | 'Evasion Technique - 527483761' along with 4 other issues ge... | dwshin | Windows | 5 | 01-09 19:24 | 01-09 20:00 | - | |
| #1100 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 5 o... | dwshin | Windows | 6 | 01-09 20:06 | 01-09 20:30 | - |