DORMANT status
Wannacry malware family
CRITICAL severity
Endpoint Behavioral Guard triggered by
c:\users\dave\downloads\wcry.exe trigger
ransomware.win.honey protection name
dave user
ATTACK STATS
What sort of connections and processes were involved?
3 Malicious
Processes
1 Script
Processes
ENTRY POINT
How did it enter the system?
dave was logged in. Incident started with network access in chrome.exe
BUSINESS IMPACT
What was the potential damage done?
241 Data
Changes
1 Data
Loss
1 Privacy
Violation
REMEDIATION
Were all incident created elements removed?
100%26/26
terminated processes
0%0/15
quarantined/deleted files