LetsDefend Monitoring Alert
Pass the Hash Attack Detected
Apr, 18, 2023, 10:36 AM
Event ID: 138
Event Time: Apr, 18, 2023, 10:36 AM
Rule Name: SOC188 - Pass the Hash Attack Detected
Alert Type: Malware
MITRE Technique:
T1110 - Credential Access - Brute Force,
T1003 - Credential Access - OS Credential Dumping,
Severity: Critical
Incident Responder