LetsDefend Monitoring Alert

Suspicious WMI Activity

Mar, 07, 2021, 04:50 PM

Event ID: 71

Event Time: Mar, 07, 2021, 04:50 PM

Rule Name: SOC134 - Suspicious WMI Activity

Alert Type: Malware

MITRE Technique:
T1204 - Execution - User Execution,

Severity: Critical

Security Analyst

2024 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166