ATTACK INFORMATION
Malware Family:
GENERAL DETAILS
Incident ID:
Analysis Time:
OS:
PC Name:
Domain:
IP Address:
User Name:
User SID:
Logon Time:
Logon Type:
Remote PC:
Remote IP:
Client Version:
DETECTION DETAILS
Trigger:
Trigger Time:
Trigger Process:
Trigger PID:
Trigger App:
Trigger MD5:
Protection Name:
Mode:
Confidence:
Severity:
ATTACK STATS
remote (RDP)
logons
malicious
connections
suspicious
connections
unclassified
connections
malicious
processes
suspicious
processes
unclassified
processes
unsigned
processes
script
processes
windows os
processes
malicious
files
suspicious
files