Incident #1027 - XDR Test Manager

HIGH 'Process Injection - 288965039' along with 932 other issues

RESOLVED SECURITY TESTING ID: #1027 | Created: 2026-01-07 11:38:17

XDR Console

933

Alerts

Hosts

Files

Network

Incident Overview

'Process Injection - 288965039' along with 932 other issues generated by XDR Agent and XDR BIOC detected on 3 hosts involving 4 users

Alert Count 933

Modified 2026-01-08 14:57

Assigned To Unassigned

Sources XDR Agent, XDR BIOC

Alert Categories

Malware Execution

Affected Hosts & Users

Hosts (3)

Users (4)

root in-bridge-40\dsst inbridge-42\dsst inbridge-ubt-24\inbridge-ubt-24

MITRE ATT&CK Mapping

Tactics (4)

TA0005 - Defense Evasion TA0003 - Persistence TA0004 - Privilege Escalation TA0002 - Execution

Techniques (4)

T1053.003 - Scheduled Task/Job: Cron T1027.010 - Obfuscated Files or Information: Command Obfuscation T1059.004 - Command and Scripting Interpreter: Unix Shell T1055 - Process Injection

Related Alerts 933

ID	Severity	Name	Host	Action	Time
17548	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 14:41
17546	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:40
17541	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:40
17539	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 14:40
17536	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 14:40
17537	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:40
17533	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:40
17534	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:40
17531	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 14:40
17527	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 14:40
17518	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 14:27
17516	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 14:27
17508	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 14:27
17505	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:27
17500	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 14:27
17501	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:27
17497	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:26
17496	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:26
17492	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:23
17493	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:22
17491	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:22
17486	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 14:22
17487	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 14:22
17509	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 14:22
17484	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:22
17485	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:22
17482	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:22
17478	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:22
17474	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:20
17472	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:20
17469	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:20
17471	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 14:20
17460	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:17
17458	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:17
17455	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 14:17
17441	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:07
17438	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:07
17434	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 14:07
17436	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 14:07
17440	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 14:07
17428	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 14:06
17427	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:06
17425	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 14:06
17423	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 14:06
17420	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 14:06
17404	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 13:43
17403	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 13:43
17399	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 13:43
17396	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 13:40
17381	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 13:40
17377	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 13:40
17385	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 13:40
17368	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 13:32
17372	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 13:31
17365	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17364	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17360	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 13:31
17353	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 13:31
17359	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 13:31
17354	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 13:31
17349	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17342	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17341	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17344	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 13:31
17339	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17340	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17350	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 13:31
17334	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 13:29
17331	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 13:29
17327	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 13:29
17326	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 13:29
17318	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:54
17316	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:54
17312	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:54
17311	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:54
17310	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:54
17303	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:53
17305	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 12:53
17301	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 12:53
17300	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:53
17296	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:53
17291	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:53
17289	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:52
17288	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:52
17279	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:52
17278	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:52
17277	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:52
17274	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:52
17292	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 12:52
17282	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 12:51
17271	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:51
17266	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 12:50
17269	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:50
17268	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:50
17262	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:50
17264	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:49
17259	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:49
17261	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:49
17257	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:49
17258	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 12:49
17255	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:49
17252	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:49
17256	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 12:49
17246	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:49
17244	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:49
17242	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 12:49
17240	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:49
17239	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:49
17230	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:49
17229	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 12:49
17234	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:49
17222	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:47
17217	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:47
17227	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 12:47
17235	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 12:46
17214	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 12:46
17216	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:46
17213	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 12:46
17212	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:46
17210	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:46
17205	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:46
17211	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 12:46
17207	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 12:46
17206	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:46
17209	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 12:46
17204	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 12:46
17191	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:46
17199	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:46
17198	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:46
17202	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:46
17203	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 12:46
17188	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:45
17201	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 12:45
17200	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:45
17197	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 12:45
17184	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:45
17187	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 12:45
17182	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:45
17176	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:45
17177	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:45
17173	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:45
17178	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 12:45
17169	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:41
17167	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:40
17160	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 12:33
17156	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-08 12:32
17154	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:32
17149	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:31
17143	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:27
17139	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:27
17131	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:17
17130	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 12:17
17129	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:17
17128	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:17
17124	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 12:17
17125	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 12:17
17121	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:16
17120	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:16
17114	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 12:16
17123	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:16
17111	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:16
17115	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 12:16
17109	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:16
17104	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 12:16
17105	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:16
17101	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 12:08
17096	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 12:08
17091	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:08
17089	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 12:08
17086	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 12:08
17081	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 12:02
17082	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 12:02
17076	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-08 12:00
17074	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 11:55
17071	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:55
17062	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 11:48
17061	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 11:48
17058	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:47
17057	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 11:47
17053	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 11:47
17051	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:47
17052	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:47
17049	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 11:47
17046	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 11:47
17050	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 11:47
17045	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 11:47
17040	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:47
17037	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:47
17036	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:47
17029	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 11:47
17028	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:47
17027	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 11:47
17031	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 11:47
17025	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 11:47
17024	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 11:47
17026	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:47
17020	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:47
17021	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 11:47
17015	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 11:46
17012	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:46
17010	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:46
17011	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:46
17009	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:46
17005	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 11:46
17003	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:40
16993	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 11:32
16991	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 11:30
16989	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:28
16984	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 11:28
16985	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:28
16983	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:28
16980	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 11:28
16979	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 11:28
16977	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:28
16971	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:28
16976	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:28
16970	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:27
16967	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:27
16966	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:27
16961	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 11:27
16960	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:27
16958	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:27
16955	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:27
16954	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 11:27
16944	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 11:20
16945	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 11:20
16939	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:20
16940	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:20
16937	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 11:20
16935	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 11:20
16931	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 11:20
16928	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 11:20
16924	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 11:20
16897	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 10:40
16891	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 10:40
16888	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 10:40
16893	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 10:40
16883	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:40
16881	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 10:40
16875	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 10:40
16890	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 10:40
16884	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 10:40
16887	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 10:40
16872	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 10:39
16870	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:37
16868	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:37
16862	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 10:37
16861	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 10:37
16867	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 10:37
16857	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 10:37
16858	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:37
16853	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 10:37
16855	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:37
16848	HIGH	Persistency - 3227545572	in-bridge-40	Prevented (Blocked)	01-08 10:30
16847	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 10:30
16838	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:21
16836	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 10:21
16837	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:21
16835	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 10:20
16832	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:20
16831	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 10:20
16827	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 10:20
16828	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 10:20
16824	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 10:20
16823	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 10:20
16822	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 10:20
16819	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 10:20
16816	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 10:20
16814	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 10:20
16812	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 10:20
16841	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 10:19
16810	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 10:19
16808	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 10:16
16786	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 10:00
16785	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 10:00
16784	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 10:00
16783	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 10:00
16782	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 10:00
16780	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 10:00
16781	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 10:00
16779	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 10:00
16775	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 09:55
16773	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 09:55
16774	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 09:55
16769	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-08 09:55
16768	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 09:55
16767	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-08 09:55
16765	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 09:55
16762	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 09:55
16742	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 09:30
16748	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 09:30
16738	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 09:30
16739	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 09:30
16741	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 09:30
16735	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 09:25
16732	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 09:25
16728	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 09:25
16725	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 09:25
16726	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 09:25
16724	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 09:24
16721	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 09:24
16720	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 09:24
16717	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 09:24
16715	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 09:24
16714	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 09:24
16710	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 09:24
16709	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 09:24
16712	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 09:24
16702	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 09:24
16703	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 09:24
16700	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 09:23
16698	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 09:23
16694	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 09:23
16692	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 09:23
16665	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 08:30
16662	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 08:30
16646	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 07:53
16643	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 07:53
16639	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 07:53
16640	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 07:53
16637	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 07:53
16636	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:53
16634	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:53
16632	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 07:52
16631	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 07:52
16624	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:40
16622	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:40
16621	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 07:40
16617	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-08 07:40
16610	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 07:35
16608	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 07:35
16605	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 07:35
16607	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 07:35
16604	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 07:35
16614	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 07:35
16601	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-08 07:34
16596	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 07:34
16599	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 07:34
16595	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 07:34
16592	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 07:34
16591	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 07:34
16588	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 07:32
16587	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-08 07:32
16585	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 07:32
16586	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 07:32
16583	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:30
16578	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 07:30
16580	HIGH	Persistency - 3227545572	inbridge-ubt-24	Prevented (Blocked)	01-08 07:30
16579	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 07:30
16572	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 07:19
16570	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 07:19
16571	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 07:19
16568	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 07:19
16560	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 07:05
16558	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 07:05
16557	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 07:05
16566	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 07:05
16551	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:03
16550	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:03
16548	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 07:02
16543	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 07:02
16544	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 07:02
16542	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 07:02
16555	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 07:02
16537	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 07:00
16540	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 07:00
16535	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 07:00
16534	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 07:00
16533	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 07:00
16531	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 07:00
16524	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 06:48
16521	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:47
16518	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 06:47
16520	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 06:47
16517	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:47
16514	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 06:47
16511	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 06:47
16504	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:38
16503	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:38
16497	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-08 06:38
16495	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 06:38
16496	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 06:38
16494	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 06:38
16492	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 06:37
16448	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:31
16444	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:31
16445	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 06:31
16439	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:31
16438	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:31
16441	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 06:31
16434	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 06:31
16432	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 06:30
16431	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 06:30
16429	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 06:30
16428	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 06:30
16435	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 06:30
16423	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:30
16419	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 06:30
16418	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 06:30
16416	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 06:30
16413	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 06:30
16414	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 06:30
16417	HIGH	Persistency - 3227545572	inbridge-ubt-24	Prevented (Blocked)	01-08 06:30
16407	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:30
16408	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:30
16398	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:06
16396	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:06
16397	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:06
16393	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 06:06
16392	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 06:05
16389	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 06:05
16386	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:05
16385	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 06:05
16384	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 06:05
16381	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 06:05
16380	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 06:05
16379	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 06:05
16374	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 06:05
16366	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 06:00
16362	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 06:00
16361	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 06:00
16356	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 06:00
16357	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 06:00
16372	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 06:00
16353	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 06:00
16352	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 06:00
16348	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 05:50
16345	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 05:50
16342	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 05:50
16339	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-08 05:50
16338	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 05:50
16336	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 05:50
16333	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 05:50
16330	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 05:50
16325	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 05:47
16324	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 05:47
16321	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 05:47
16317	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 05:47
16318	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 05:47
16311	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 05:38
16309	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 05:38
16305	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 05:38
16304	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 05:38
16302	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 05:38
16297	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 05:38
16298	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 05:38
16288	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-08 05:35
16291	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 05:35
16294	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 05:35
16295	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 05:35
16283	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 05:35
16281	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 05:35
16284	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 05:35
16277	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 05:35
16278	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 05:35
16273	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 05:35
16274	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 05:35
16271	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 05:35
16270	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 05:35
16212	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 05:32
16215	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-08 05:32
16205	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-08 05:32
16210	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 05:32
16203	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 05:32
16199	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 05:32
16269	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 05:32
16142	HIGH	Persistency - 3227545572	inbridge-ubt-24	Prevented (Blocked)	01-08 05:30
16139	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 05:30
16138	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 05:30
16131	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 05:17
16129	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-08 05:17
16127	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 05:17
16102	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 04:30
16100	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 04:30
16095	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 04:30
16094	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 04:30
16101	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 04:30
16111	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 04:30
16092	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 04:30
16091	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-08 04:30
15973	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 00:56
15969	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 00:56
15968	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 00:56
15963	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 00:56
15953	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 00:53
15954	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 00:53
15950	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 00:53
15948	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 00:53
15945	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 00:53
15943	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 00:46
15939	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 00:45
15940	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-08 00:45
15936	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-08 00:44
15934	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-08 00:44
15930	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 00:44
15932	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-08 00:44
15925	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 00:44
15920	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-08 00:44
15921	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 00:44
15875	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 00:20
15872	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 00:20
15865	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 00:04
15864	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 00:04
15861	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-08 00:04
15860	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-08 00:04
15856	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-08 00:03
15857	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-08 00:03
15852	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-08 00:03
15851	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-08 00:03
15849	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-08 00:03
15847	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 00:03
15844	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-08 00:03
15843	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 00:03
15832	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 00:00
15833	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-08 00:00
15831	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:56
15825	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 23:56
15839	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 23:56
15822	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 23:56
15819	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 23:54
15816	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 23:54
15657	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:33
15621	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:33
15613	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:33
15606	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 23:33
15602	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 23:33
15511	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:30
15505	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:30
15506	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 23:30
15612	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 23:30
15490	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 23:30
15483	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 23:30
15475	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 23:30
15471	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 23:30
15465	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 23:30
15460	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 23:30
15461	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 23:30
15458	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 23:30
15455	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:30
15454	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:30
15448	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 23:16
15445	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 23:16
15442	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 23:15
15433	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 23:10
15434	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 23:10
15432	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:10
15440	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 23:10
15426	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:10
15427	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 23:10
15425	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:10
15421	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 23:09
15419	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 23:09
15415	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 23:09
15411	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 23:07
15410	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:07
15404	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 23:07
15398	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:07
15405	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:07
15400	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-07 23:07
15396	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 23:07
15403	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 23:07
15402	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 23:07
15392	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:07
15391	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 23:07
15389	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:07
15386	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 23:07
15382	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 23:06
15383	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 23:06
15378	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:06
15376	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 23:04
15369	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 23:04
15367	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 23:04
15364	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 23:04
15362	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 23:03
15358	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 23:02
15356	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 23:02
15355	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 23:02
15346	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 22:59
15341	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 22:59
15338	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 22:59
15336	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 22:59
15335	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 22:59
15334	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 22:59
15331	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 22:57
15328	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 22:56
15325	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 22:56
15323	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 22:56
15321	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 22:56
15313	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 22:47
15311	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 22:47
15308	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 22:47
15304	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 22:47
15305	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 22:47
15303	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 22:46
15299	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 22:46
15298	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 22:46
15297	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 22:46
15292	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 22:46
15291	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 22:45
15286	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 22:36
15284	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 22:36
14750	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 22:30
14749	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 22:30
14748	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 22:30
14743	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 22:20
14740	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 22:20
14739	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 22:20
14737	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 22:20
14734	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 22:20
14732	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 22:19
14728	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 22:17
14725	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 22:17
14721	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 22:17
14716	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 22:09
14703	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 22:00
14699	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 22:00
14694	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 22:00
14693	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 22:00
14692	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 22:00
14687	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 21:45
14685	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 21:45
14681	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 21:45
14677	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:45
14676	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:45
14675	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 21:45
14673	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 21:45
14672	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 21:45
14670	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:44
14667	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:44
14668	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 21:44
14661	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 21:44
14664	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 21:44
14659	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:44
14660	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 21:44
14658	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:44
14657	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 21:44
14656	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:44
14654	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:44
14652	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:44
14653	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 21:44
14649	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:43
14648	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 21:43
14645	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:43
14644	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:43
14640	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-07 21:43
14637	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 21:43
14643	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:43
14635	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 21:43
14633	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 21:43
14630	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:43
14624	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 21:43
14623	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:43
14618	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 21:34
14616	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:34
14610	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 21:34
14609	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 21:34
14605	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 21:34
14621	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 21:33
14550	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 21:31
14537	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:30
14533	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:30
14531	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 21:30
14527	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 21:30
14521	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:30
14516	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:22
14509	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 21:21
14508	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 21:21
14507	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 21:21
14506	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 21:19
14495	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 21:07
14493	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 21:05
14490	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 21:05
14489	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:05
14485	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 21:04
14481	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:04
14479	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 21:04
14475	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 21:04
14468	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 21:01
14469	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:01
14463	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 21:01
14462	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:01
14458	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 21:01
14459	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 21:01
14486	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-07 21:01
14454	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:01
14455	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 21:01
14453	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 21:01
14472	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 21:00
14450	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:00
14448	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 21:00
14443	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 21:00
14439	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 21:00
14438	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 21:00
14433	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:00
14432	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 21:00
14429	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:57
14427	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:57
14420	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 20:51
14419	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 20:51
14416	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:51
14414	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:51
14423	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-07 20:48
14407	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 20:48
14404	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 20:48
14402	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 20:48
14403	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 20:48
14401	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 20:48
14399	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 20:48
14397	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:45
14396	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 20:45
14393	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 20:45
14392	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:45
14389	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:45
14388	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 20:45
14386	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 20:45
14384	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 20:45
14380	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 20:44
14379	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 20:44
14375	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 20:42
14374	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:42
14372	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 20:42
14371	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 20:41
14367	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 20:41
14366	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:41
14360	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 20:41
14353	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 20:41
14357	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 20:41
14362	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 20:41
14352	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 20:39
14351	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 20:39
14348	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 20:38
14347	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 20:38
14345	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 20:38
14341	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:38
14337	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 20:38
14340	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:38
14336	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:38
14335	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:38
14332	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:38
14326	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 20:38
14329	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 20:38
14325	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:37
14324	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:37
14323	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 20:37
14321	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 20:37
14318	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:37
14316	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 20:37
14314	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 20:37
14307	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 20:32
14304	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:32
14301	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 20:32
14294	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 20:32
14297	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 20:32
14295	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:32
14300	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:32
14305	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 20:32
14289	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:32
14290	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:32
14246	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 20:30
14245	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:30
14243	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:29
14239	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 20:29
14233	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 20:19
14232	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:19
14228	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 20:18
14222	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:18
14227	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:18
14223	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:18
14218	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:18
14219	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 20:18
14217	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:18
14215	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 20:18
14214	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:18
14210	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 20:16
14205	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 20:16
14201	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 20:16
14202	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 20:16
14200	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 20:15
14196	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 20:15
14194	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:15
14193	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:15
14187	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 20:00
14181	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 20:00
14175	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 20:00
14174	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:00
14172	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:00
14171	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 20:00
14166	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 19:56
14164	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 19:55
14165	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 19:55
14161	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 19:55
14159	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 19:55
14158	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 19:55
14153	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 19:55
14154	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 19:55
14148	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 19:55
14151	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 19:55
14139	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 19:46
14140	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 19:46
14136	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 19:44
14134	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 19:44
14133	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 19:44
14131	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 19:44
14129	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 19:44
14127	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 19:44
14126	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 19:44
14123	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 19:44
14119	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 19:32
14083	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 19:30
14082	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 19:28
14077	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 19:28
14075	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 19:28
14064	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 19:08
14059	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 19:08
14055	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 19:07
14051	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 19:07
14052	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 19:07
14050	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 19:07
14045	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 19:05
14039	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 19:04
14043	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 19:04
14037	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 19:04
14034	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 19:04
14029	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 19:02
14025	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 19:01
14023	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 19:00
14019	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 19:00
14018	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 19:00
14016	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 19:00
14012	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 18:59
14010	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 18:57
14008	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 18:57
14005	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 18:57
14004	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 18:57
14000	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 18:57
13997	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 18:56
13995	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 18:56
13991	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 18:46
13988	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 18:46
13901	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 17:15
13879	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 16:43
13878	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 16:42
13875	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 16:42
13873	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 16:42
13870	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 16:42
13866	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 16:42
13867	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 16:42
13863	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:40
13862	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 16:40
13856	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 16:37
13849	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 16:37
13853	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 16:37
13846	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 16:37
13844	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:37
13841	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:37
13839	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 16:37
13838	HIGH	Persistency - 456694134	inbridge-42	Detected (Reported)	01-07 16:36
13833	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 16:36
13830	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 16:34
13829	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 16:34
13827	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 16:34
13824	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 16:34
13822	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 16:33
13823	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:33
13821	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:33
13820	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 16:33
13814	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 16:33
13811	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 16:33
13807	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 16:31
13804	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 16:31
13803	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 16:31
13806	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 16:31
13798	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 16:31
13799	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 16:31
13796	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 16:31
13800	MEDIUM	Perl script connecting to network	inbridge-ubt-24	Detected	01-07 16:30
13792	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 16:30
13788	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 16:30
13791	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:30
13787	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 16:30
13785	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 16:30
13786	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 16:30
13782	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 16:30
13778	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 16:30
13781	HIGH	Persistency - 779040014	inbridge-42	Prevented (Blocked)	01-07 16:30
13777	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 16:30
13763	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 16:00
13760	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 16:00
13758	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:00
13754	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 16:00
13747	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 15:43
13745	HIGH	Process Injection - 288965039	in-bridge-40	Detected (Reported)	01-07 15:42
13741	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 15:42
13740	HIGH	Staged Malware Activity - 2123359011	inbridge-ubt-24	Detected (Reported)	01-07 15:42
13738	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 15:42
13736	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 15:41
13725	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 15:41
13730	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 15:41
13732	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 15:41
13727	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 15:41
13720	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 15:41
13721	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 15:41
13717	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 15:40
13715	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 15:40
13714	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 15:40
13706	HIGH	Staged Malware Activity - 2123359011	inbridge-42	Detected (Reported)	01-07 15:27
13703	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 15:27
13702	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 15:27
13698	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 15:27
13697	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 15:27
13695	HIGH	Persistency - 779040014	inbridge-ubt-24	Prevented (Blocked)	01-07 15:26
13693	HIGH	Process Injection - 288965039	inbridge-ubt-24	Detected (Reported)	01-07 15:26
13690	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 15:26
13689	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 15:26
13685	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 15:26
13687	MEDIUM	Perl script connecting to network	inbridge-42	Detected	01-07 15:26
13684	HIGH	Process Injection - 288965039	inbridge-42	Detected (Reported)	01-07 15:22
13682	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 15:22
13679	HIGH	Persistency - 456694134	in-bridge-40	Detected (Reported)	01-07 15:22
13680	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 15:22
13676	HIGH	Persistency - 779040014	in-bridge-40	Prevented (Blocked)	01-07 15:22
13675	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 15:22
13670	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 15:22
13668	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 15:21
13666	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 15:21
13662	HIGH	Process Injection - 288965039	inbridge-42	Prevented (Blocked)	01-07 15:21
13659	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 15:21
13656	HIGH	Staged Malware Activity - 2123359011	in-bridge-40	Detected (Reported)	01-07 15:21
13651	HIGH	Persistency - 456694134	inbridge-ubt-24	Detected (Reported)	01-07 15:21
13650	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 15:20
13644	HIGH	Process Injection - 288965039	inbridge-ubt-24	Prevented (Blocked)	01-07 15:01
13588	HIGH	Process Injection - 288965039	in-bridge-40	Prevented (Blocked)	01-07 11:38
13590	MEDIUM	Perl script connecting to network	in-bridge-40	Detected	01-07 11:38

File Artifacts 46

File Name	Path	SHA256	Signature	Verdict	Actions
update-motd-reboot-required	-	`e18f8d28bdff7d892991fb2c9d723964672f651225aaf03fe3848c215da1ecbe`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
98-reboot-required	-	`ede15e980ec54e7211923a42b77531ee06a15e2a728f645004b4c0fff3d660f7`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
sshd	-	`4cc983fa8f3a26626981dbbe79113348fb86cca3ec426f6af5fabd08215fd5e1`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
sh	-	`86d31f6fb799e91fa21bad341484564510ca287703a16e9e46c53338776f4f42`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
run-parts	-	`3f36124107498d18ddacfbfe773df11e7094d5d143194cdfcec8804cccc81f64`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
update-motd-fsck-at-reboot	-	`ee7dc35db83e025c41460b03c37bf45f03c7f7d654b74bd3828cb9af107d90d1`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
cat	-	`90c9437a02857838ccc0ce1ff8652691181bfb67135a1173dd276f91fa57d7ec`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
zsh	-	`f88db3dd0a2909ed62cdb645dbb7b56a6bee5abbe310751dc0f549a811222f46`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
sshd	-	`090ecdb53316ebadc17949e4699540588dcb0896dbb0a8ae93da72a8e20ad781`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
bash	-	`bc5945feb8bd26203ebfafea5ce1878bb2e32cb8fb50ab7ae395cfb1e1aaaef1`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
sh	-	`4f291296e89b784cd35479fca606f228126e3641f5bcaee68dee36583d7c9483`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
bash	-	`59474588a312b6b6e73e5a42a59bf71e62b55416b6c9d5e4a6e1c630c2a9ecd4`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
update-motd-fsck-at-reboot	-	`88b40e43ddc24e66a2056388ac737f018af1cf92ce878431927226ced511f731`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
run-parts	-	`6662ac8211738cab5e9c8138f92c9f54319a1892ec3da24f47620d46963671a8`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
cat	-	`210ffa7daedb3ef6e9230d391e9a10043699ba81080ebf40c6de70ed77e278ba`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
date	-	`423e1cf8af70dd477a56d019912e13660199df3a01420f5ced7dadcc2b786bdc`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
crontab	-	`d71b4e26034ec955cae7e7101a4b33f5923b3396a0e1e1893cd1274bbb51c3ec`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
sleep	-	`06d3927480c7554337818dbf5d91d78689bc8321237280e3d452028d5d1c3f43`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
timeout	-	`375eaa8774baf7667515932c4d6fa2e31a2c21e9c50f152a27c4c6a718374ebe`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
date	-	`08b85d43067bcd15edb0882d5372a8b5635e211f76b62ccc4d575f2ed4920e18`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
crontab	-	`11651a4bd5c9605dac9df09bcb1ce16e40e740558766081a784e16db0098c042`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
sleep	-	`b9aec374a2b2a175a182f615291ad408820b7fb8c663a184e37fa3492d3f8eff`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
curl	-	`aca992dba6da014cd5baaa739624e68362c8930337f3a547114afdbd708d06a4`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
base64	-	`e8e52c2af48cbd8202304496b3f7d05f53a2ecc4b3fb0f1b81acfed58e57a042`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
netstat	-	`d0a6881ccac8d74a2c9f81768fd3794c662b26a0ff259b7619406eb65f7238ff`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
ls	-	`0148f5ab3062a905281d8deb9645363da5131011c9e7b6dcaa38b504e41b68ea`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
whoami	-	`515743f4f9c88b1579af8bcc3124b0f376003df7babf47daab1852d52b752171`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
timeout	-	`8d21b4cf1b204cc2387377a63c542ecdd0ae0895613db67ceb7da1e253110741`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
perl	-	`38d70f54fd18d614e9e6cc35c960b45f54e7b991894b8308e704ae9953c86ce4`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
id	-	`2477c312a6fd6beb585ccbfccaf78cc0c742b65f0bda6a308f6d239d35ffc3e4`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
base64	-	`b10f8c059f50c0681c6497e7b09ebdba168e341498ae1733de9089dc8efa0898`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
curl	-	`9bde64e896b6bd9b59f5761c5ff7e0e6e9142695db2f25f8137d0db2e16f66d0`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
netstat	-	`6964174e8c4af7c39b39b1ad3a682b3120878bdfd4950e02f67f15908db73e72`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
ls	-	`12a6d908a68ccf6f9f3d799705577c28763f5deef6eddcff7643d6d8a6de543d`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
id	-	`301882faeaa476b0ce2d2bbc4e6217e494d4d768efa6d38464bf5ca366f40104`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
whoami	-	`38433f7ca2a213ae627ccc4fc44b9db8c9a6873123f6bef16e2db325e114740d`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
perl	-	`367271e451185cad9ba61d13aa9bcbc60f880814eb77e171cbecf05f9077badd`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
cron	-	`6bd8593640af2413bce259fa0affc18dbf149892756ebe805bf316624f8b590f`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
cron	-	`ffc30864da514025c073a29d5afc6705ff8bbe4ecfdbc7917dd674e37b7b1b8a`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
cut	-	`009c33a29d9bd64aac20430b729d0f797c05a97931e0a8a0fdc5bbbf47817758`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
lsb_release	-	`484188f4b37b4021998dafd1966cda1c6f8207af9aee3ad51746a5d22acf3e65`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
awk	-	`b78fdf4db4aea83cc644ef1b3a1bab43600d3f5acec16fe7b529dcc309d4f5b2`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
check-new-release	-	`1edadf42308909f102cdf31fe664b69e7992953bbedc3be5f19a0836db01590e`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
awk	-	`3850bf893d3f4f8ec462c8b59d6d66fdbbe8ddc0715b3d404d9cc574526b781c`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
cut	-	`e48d15703786f49ae0e01003d72d335b6307769735bd36d93df2983d6b340122`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT
dpkg	-	`052d7ffc6a813d0744e45b89ed2d9f4c6368b5ee9126aef1c7290d6cac38e287`	SIGNATURE_UNAVAILABLE	UNKNOWN	VT

Network Artifacts 0

No network artifacts found for this incident

Process Artifacts 933

Process	Command Line	Parent Process	User
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root
sshd	`sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups`	sshd	root

Registry Artifacts 0

No registry artifacts found for this incident

Analyst Verdict

Classification

Risk Level

HIGH

Resolution Notes

Bulk resolved via XdrTestManager IncidentLive

Recommended Actions

Isolate affected endpoints
Investigate all related alerts
Document findings

Summary

933

Alerts

Hosts

Files

Network

Alert Categories

Malware Execution

Timeline

01-08 14:57:44

Incident Modified

Status or details updated

01-08 14:57:44

Incident Resolved

resolved security testing

01-08 14:41:03

Staged Malware Activity - 2123359011

high - Detected (Reported)

01-08 14:40:59

Process Injection - 288965039

high - Detected (Reported)

01-08 14:40:50

Process Injection - 288965039

high - Detected (Reported)

01-08 14:40:46

Persistency - 779040014

high - Prevented (Blocked)

01-08 14:40:43

Staged Malware Activity - 2123359011

high - Detected (Reported)

01-08 14:40:42

Process Injection - 288965039

high - Detected (Reported)

01-08 14:40:27

Process Injection - 288965039

high - Detected (Reported)

01-08 14:40:26

Process Injection - 288965039

high - Detected (Reported)

01-08 14:40:23

Staged Malware Activity - 2123359011

high - Detected (Reported)

01-08 14:40:04

Persistency - 779040014

high - Prevented (Blocked)

01-08 14:27:43

Persistency - 779040014

high - Prevented (Blocked)

01-08 14:27:41

Persistency - 779040014

high - Prevented (Blocked)

01-08 14:27:22

Staged Malware Activity - 2123359011

high - Detected (Reported)

01-08 14:27:07

Process Injection - 288965039

high - Detected (Reported)

01-08 14:27:04

Staged Malware Activity - 2123359011

high - Detected (Reported)

01-08 14:27:02

Process Injection - 288965039

high - Detected (Reported)

01-08 14:26:53

Process Injection - 288965039

high - Detected (Reported)

01-08 14:26:52

Process Injection - 288965039

high - Detected (Reported)

01-08 14:23:03

Process Injection - 288965039

high - Detected (Reported)

01-08 14:22:58

Process Injection - 288965039

high - Detected (Reported)

01-08 14:22:55

Process Injection - 288965039

high - Detected (Reported)

01-08 14:22:53

Staged Malware Activity - 2123359011

high - Detected (Reported)

01-08 14:22:52

Persistency - 779040014

high - Prevented (Blocked)