LetsDefend Monitoring Alert

In-Memory Shellcode Injection

Aug, 10, 2023, 07:11 AM

Event ID: 175

Event Time: Aug, 10, 2023, 07:11 AM

Rule Name: SOC218 - In-Memory Shellcode Injection

Alert Type: C2

MITRE Technique:
T1059.004 - Execution - Unix Shell,
T1105 - Command and Control - Ingress Tool Transfer,
T1571 - Command and Control - Non-Standard Port,
T1104 - Command and Control - Multi-Stage Channels,

Severity: High

Incident Responder

2024 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166