LetsDefend Monitoring Alert
Pikabot IOC's Detected
Mar, 01, 2024, 02:56 PM
Event ID: 233
Event Time: Mar, 01, 2024, 02:56 PM
Rule Name: SOC265 - Pikabot IOC's Detected
Alert Type: Malware
MITRE Technique:
T1071 - Command and Control - Application Layer Protocol,
T1105 - Command and Control - Ingress Tool Transfer,
T1204.002 - Execution - User Execution: Malicious File,
T1566.001 - Initial Access - Phishing: Spearphishing Attachment,
T1059.003 - Execution - Command and Scripting Interpreter: Windows Command Shell,
T1059.007 - Execution - Command and Scripting Interpreter: JavaScript,
Severity: High
Incident Responder