LetsDefend Monitoring Alert
Big Head Ransomware IOC's Detected
Aug, 15, 2023, 06:20 AM
Event ID: 178
Event Time: Aug, 15, 2023, 06:20 AM
Rule Name: SOC220 - Big Head Ransomware IOC's Detected
Alert Type: Ransomware
MITRE Technique:
T1486 - Impact - Data Encrypted for Impact,
T1059 - Execution - Command and Scripting Interpreter,
T1204 - Execution - User Execution,
T1547 - Persistence - Boot or Logon Autostart Execution,
T1037 - Privilege Escalation - Boot or Logon Autostart Execution,
T1566.002 - Initial Access - Phishing: Spearphishing Link,
Severity: Critical
Incident Responder