LetsDefend Monitoring Alert
BianLian Ransomware Detected
Mar, 27, 2023, 01:34 PM
Event ID: 130
Event Time: Mar, 27, 2023, 01:34 PM
Rule Name: SOC180 - BianLian Ransomware Detected
Alert Type: Ransomware
MITRE Technique:
T1486 - Impact - Data Encrypted for Impact,
T1566 - Initial Access - Phishing,
T1059.001 - Execution - Command and Scripting Interpreter: PowerShell,
T1059 - Execution - Command and Scripting Interpreter,
Severity: High
Incident Responder