Incident Live 2144 / 2144
마지막 조회: 01:24:31
0개 선택됨
NEW 인시던트
3 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #195 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 7 | 01-02 23:43 | 01-03 00:21 | - | |
| #192 | Other | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | desktop-fnumv3u, teahee | Windows | 5 | 01-02 23:09 | 01-03 00:10 | - | |
| #194 | Resolved | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | desktop-fnumv3u | Windows | 5 | 01-02 23:30 | 01-02 23:50 | - | |
| #190 | Resolved | HIGH | 'File Drop - 2775215878' along with 6 other issues generated... | desktop-fnumv3u | Windows | 7 | 01-02 22:48 | 01-02 23:30 | - | |
| #191 | Resolved | HIGH | 'Credential Gathering Protection - 3380811775' along with 7 ... | dwshin | Windows | 8 | 01-02 22:54 | 01-02 23:30 | - | |
| #185 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 27 other issues g... | book-r0be6s1nc3, desktop-fnumv3u | Windows | 28 | 01-02 20:25 | 01-02 22:44 | - | |
| #186 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-02 20:27 | 01-02 22:44 | - | |
| #187 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 11 other i... | inbridge-42 | Linux | 12 | 01-02 20:30 | 01-02 22:44 | - | |
| #188 | Resolved | HIGH | 'File Drop - 1815185192' along with 17 other issues generate... | dwshin | Windows | 18 | 01-02 20:41 | 01-02 22:44 | - | |
| #189 | Resolved | HIGH | 'File Drop - 3732557733' along with 6 other issues generated... | desktop-fnumv3u | Windows | 7 | 01-02 20:42 | 01-02 21:10 | - | |
| #183 | Resolved | HIGH | 'Persistency - 1983659418' along with 4 other issues generat... | dwshin | Windows | 5 | 01-02 20:13 | 01-02 20:40 | - | |
| #184 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | desktop-fnumv3u | Windows | 5 | 01-02 20:21 | 01-02 20:40 | - | |
| #180 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 3 other is... | inbridge-42 | Linux | 4 | 01-02 19:30 | 01-02 20:11 | - | |
| #178 | Resolved | MEDIUM | 'WildFire Malware' along with 1 other issue generated by XDR... | teahee | Windows | 2 | 01-02 19:24 | 01-02 20:11 | - | |
| #179 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | book-r0be6s1nc3, desktop-fnumv3u | Windows | 4 | 01-02 19:24 | 01-02 20:11 | - | |
| #182 | Resolved | HIGH | 'Credential Gathering Protection - 510630382' along with 1 o... | dwshin | Windows | 2 | 01-02 20:02 | 01-02 20:11 | - | |
| #181 | Resolved | HIGH | 'Network Connection - 1971152322' along with 5 other issues ... | dwshin | Windows | 6 | 01-02 19:42 | 01-02 20:00 | - | |
| #177 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 4 o... | desktop-fnumv3u | Windows | 5 | 01-02 19:18 | 01-02 19:50 | - | |
| #176 | Other | HIGH | 'File Drop - 3732557733' along with 5 other issues generated... | dwshin | Windows | 6 | 01-02 19:17 | 01-02 19:40 | - | |
| #172 | Resolved | MEDIUM | 'WildFire Malware' along with 1 other issue generated by XDR... | teahee | Windows | 2 | 01-02 18:21 | 01-02 19:16 | - | |
| #173 | Resolved | HIGH | 'Network Connection - 1971152322' along with 8 other issues ... | book-r0be6s1nc3, desktop-fnumv3u | Windows | 9 | 01-02 18:21 | 01-02 19:16 | - | |
| #174 | Resolved | HIGH | 'Command-line arguments match Mimikatz execution' along with... | desktop-fnumv3u | Windows | 5 | 01-02 18:36 | 01-02 19:16 | - | |
| #175 | Resolved | HIGH | 'Powershell Activity - 3083271452' along with 5 other issues... | dwshin | Windows | 6 | 01-02 18:37 | 01-02 19:16 | - | |
| #168 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 7 other is... | inbridge-42 | Linux | 8 | 01-02 17:30 | 01-02 18:32 | - | |
| #171 | Resolved | HIGH | 'Script Activity - 3055004603' along with 5 other issues gen... | dwshin | Windows | 6 | 01-02 18:00 | 01-02 18:32 | - | |
| #170 | Resolved | HIGH | 'File Drop - 4219385159' along with 9 other issues generated... | desktop-fnumv3u | Windows | 10 | 01-02 17:54 | 01-02 18:32 | - | |
| #169 | Resolved | HIGH | 'File Drop - 1815185192' along with 4 other issues generated... | dwshin | Windows | 5 | 01-02 17:45 | 01-02 17:56 | - | |
| #162 | Resolved | MEDIUM | 'WildFire Malware' along with 2 other issues generated by XD... | teahee | Windows | 3 | 01-02 16:33 | 01-02 17:41 | - | |
| #165 | Resolved | MEDIUM | 'WildFire Malware' along with 2 other issues generated by XD... | book-r0be6s1nc3, desktop-fnumv3u | Windows | 3 | 01-02 17:18 | 01-02 17:41 | - | |
| #166 | Resolved | HIGH | 'Credential Gathering Protection - 510630382' along with 5 o... | dwshin | Windows | 6 | 01-02 17:25 | 01-02 17:41 | - | |
| #167 | Resolved | HIGH | 'Script Activity - 3055004603' along with 9 other issues gen... | desktop-fnumv3u | Windows | 10 | 01-02 17:26 | 01-02 17:41 | - | |
| #163 | Resolved | HIGH | 'Staged Malware Activity - 4061872954' along with 5 other is... | dwshin | Windows | 6 | 01-02 16:50 | 01-02 17:24 | - | |
| #164 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | desktop-fnumv3u | Windows | 4 | 01-02 16:58 | 01-02 17:24 | - | |
| #160 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 3 other is... | inbridge-42 | Linux | 4 | 01-02 16:30 | 01-02 16:57 | - | |
| #161 | Resolved | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | desktop-fnumv3u | Windows | 5 | 01-02 16:30 | 01-02 16:57 | - | |
| #159 | Resolved | HIGH | 'File Drop - 4219385159' along with 5 other issues generated... | dwshin | Windows | 6 | 01-02 16:29 | 01-02 16:50 | - | |
| #154 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 29 other issue... | book-r0be6s1nc3, desktop-fnumv3u +1 | Windows | 30 | 01-02 14:59 | 01-02 16:29 | - | |
| #156 | Resolved | MEDIUM | 'WildFire Malware' along with 2 other issues generated by XD... | teahee | Windows | 3 | 01-02 15:12 | 01-02 16:29 | - | |
| #157 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 3 other is... | inbridge-42 | Linux | 4 | 01-02 15:30 | 01-02 16:29 | - | |
| #158 | Resolved | HIGH | 'Command-line arguments match Mimikatz execution' along with... | book-r0be6s1nc3 | Windows | 3 | 01-02 16:12 | 01-02 16:29 | - | |
| #155 | Resolved | HIGH | 'Persistency - 1983659418' along with 10 other issues genera... | dwshin | Windows | 11 | 01-02 15:09 | 01-02 16:29 | - | |
| #131 | Resolved | MEDIUM | 'WildFire Malware' along with 2 other issues generated by XD... | teahee | Windows | 3 | 01-02 14:09 | 01-02 14:57 | - | |
| #143 | Resolved | HIGH | 'Network Connection - 1971152322' along with 2 other issues ... | dwshin | Windows | 3 | 01-02 14:43 | 01-02 14:57 | - | |
| #150 | Resolved | HIGH | 'Regsvr32 may have run code from an untrusted source' along ... | desktop-fnumv3u | Windows | 2 | 01-02 14:52 | 01-02 14:57 | - | |
| #152 | Resolved | HIGH | 'Process Injection - 288965039' along with 2 other issues ge... | inbridge-ubt-24 | Linux | 3 | 01-02 14:55 | 01-02 14:57 | - | |
| #153 | Resolved | HIGH | Remote shell persistency acquired using the crontab mechanis... | in-bridge-40 | Linux | 1 | 01-02 14:55 | 01-02 14:57 | - | |
| #148 | Resolved | HIGH | 'Persistency - 456694134' along with 5 other issues generate... | inbridge-42 | Linux | 6 | 01-02 14:48 | 01-02 14:55 | - | |
| #149 | Resolved | HIGH | 'Process Injection - 288965039' along with 1 other issue gen... | inbridge-ubt-24 | Linux | 2 | 01-02 14:48 | 01-02 14:55 | - | |
| #151 | Resolved | HIGH | 'Process Injection - 288965039' along with 3 other issues ge... | inbridge-42 | Linux | 4 | 01-02 14:54 | 01-02 14:55 | - | |
| #139 | Resolved | HIGH | 'File Drop - 1815185192' along with 6 other issues generated... | desktop-fnumv3u | Windows | 7 | 01-02 14:38 | 01-02 14:50 | - |