Alert Information Low
Alert ID
ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:23227287-4748-468496
Composite ID
84393bf974fd44bda943a25a6a7bc27f:ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:23227287-4748-468496
설명
A file written to the file-system was classified as Adware/PUP based on its SHA256 hash.
호스트
DWSHIN
상태
new
생성 시간
2025-12-09 11:49:20
업데이트 시간
2025-12-09 12:48:20
MITRE ATT&CK
Tactic
Malware
Technique
PUP
Command Line 
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=ko --service-sandbox-type=none --no-pre-read-main-dll --metrics-shmem-handle=2180,i,4158274419332933180,11321283162373530614,524288 --field-trial-handle=1928,i,8120133057903260333,4387035684516251213,262144 --variations-seed-version=20251207-030030.318000 --trace-process-track-uuid=3190708989122997041 --mojo-platform-channel-handle=2104 /prefetch:11
Raw JSON Data 
{"id":"ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:23227287-4748-468496","composite_id":"84393bf974fd44bda943a25a6a7bc27f:ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:23227287-4748-468496","agent_id":"b4ebfd0a1e2447bcb45b3b72c5794e0e","cid":"84393bf974fd44bda943a25a6a7bc27f","description":"A file written to the file-system was classified as Adware/PUP based on its SHA256 hash.","severity":30,"severity_name":"Low","confidence":100,"tactic":"Malware","tactic_id":"CSTA0001","technique":"PUP","technique_id":"CST0013","cmdline":"\u0022C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe\u0022 --type=utility --utility-sub-type=network.mojom.NetworkService --lang=ko --service-sandbox-type=none --no-pre-read-main-dll --metrics-shmem-handle=2180,i,4158274419332933180,11321283162373530614,524288 --field-trial-handle=1928,i,8120133057903260333,4387035684516251213,262144 --variations-seed-version=20251207-030030.318000 --trace-process-track-uuid=3190708989122997041 --mojo-platform-channel-handle=2104 /prefetch:11","filename":"chrome.exe","filepath":"\\Device\\HarddiskVolume3\\Program Files\\Google\\Chrome\\Application\\chrome.exe","sha256":"b0668b6596578d5d918c8d29083423c8025bd49328130383841139dd575868c6","status":"new","type":"ldt","created_timestamp":"2025-12-09T02:49:20.965926134Z","updated_timestamp":"2025-12-09T03:48:20.941512867Z","device":{"device_id":"b4ebfd0a1e2447bcb45b3b72c5794e0e","cid":"84393bf974fd44bda943a25a6a7bc27f","agent_version":"7.29.20108.0","hostname":"DWSHIN","local_ip":"26.26.26.1","external_ip":"211.198.135.5","mac_address":"00-ff-15-bf-2c-c0","platform_name":"Windows","os_version":"Windows 11"},"aggregate_id":"aggind:b4ebfd0a1e2447bcb45b3b72c5794e0e:4297982760","CreatedAt":"2025-12-09T11:49:20.9659261+09:00","UpdatedAt":"2025-12-09T12:48:20.9415129+09:00"}
Quick Info
  • Severity Low
  • Score 30
  • Agent ID b4ebfd0a1e2447bcb45b3b72c5794e0e
Actions
Falcon Console에서 보기 목록으로 돌아가기