LetsDefend Monitoring Alert

Network Sniffer Detected

May, 17, 2023, 09:05 AM

Event ID: 148

Event Time: May, 17, 2023, 09:05 AM

Rule Name: SOC198 - Network Sniffer Detected

Alert Type: Malware

MITRE Technique:
T1566 - Initial Access - Phishing,
T1053.003 - Persistence - Scheduled Task/Job: Cron,
T1053 - Persistence - Scheduled Task/Job,
T1040 - Credential Access - Network Sniffing,

Severity: High

Incident Responder

2024 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166