knan1337xSOC164 — Suspicious Mshta BehaviorAccording to virustotal file flagged as malicious.May 23, 2022May 23, 2022
knan1337xSOC143 — Password Stealer DetectedAccording to virustotal file flagged as malicious.May 23, 2022May 23, 2022
knan1337xSOC144 — New scheduled task createdLet’s check python file for malicious code.May 23, 2022May 23, 2022
knan1337xSOC167 — LS Command Detected in Requested URLWe can say that there is problem with rule. Because it detected ls in skills.May 22, 2022May 22, 2022
knan1337xSOC146 — Phishing Mail Detected — Excel 4.0 MacrosIn mailbox there is zip file :May 22, 2022May 22, 2022
knan1337xSOC145 — Ransomware DetectedAfter checking file hash with virustotal we can see that it malicious file.May 22, 2022May 22, 2022
knan1337xSOC166 — Javascript Code Detected in Requested URLAfter analyzing logs we can see that there is xss attemptMay 22, 2022May 22, 2022
knan1337xSOC142 — Multiple HTTP 500 Response WalkthroughIn alert we can see that multiple HTTP 500 response detected.May 22, 2022May 22, 2022