Alert Information
Low
- Alert ID
ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:36350827-4748-325904- Composite ID
84393bf974fd44bda943a25a6a7bc27f:ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:36350827-4748-325904- 설명
- A file written to the file-system was classified as Adware/PUP based on its SHA256 hash.
- 호스트
- DWSHIN
- 상태
- new
- 생성 시간
- 2025-12-09 11:29:15
- 업데이트 시간
- 2025-12-09 12:28:15
MITRE ATT&CK
- Tactic
- Malware
- Technique
- PUP
Command Line
C:\Windows\Explorer.EXE
Raw JSON Data
{"id":"ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:36350827-4748-325904","composite_id":"84393bf974fd44bda943a25a6a7bc27f:ind:b4ebfd0a1e2447bcb45b3b72c5794e0e:36350827-4748-325904","agent_id":"b4ebfd0a1e2447bcb45b3b72c5794e0e","cid":"84393bf974fd44bda943a25a6a7bc27f","description":"A file written to the file-system was classified as Adware/PUP based on its SHA256 hash.","severity":30,"severity_name":"Low","confidence":100,"tactic":"Malware","tactic_id":"CSTA0001","technique":"PUP","technique_id":"CST0013","cmdline":"C:\\Windows\\Explorer.EXE","filename":"explorer.exe","filepath":"\\Device\\HarddiskVolume3\\Windows\\explorer.exe","sha256":"a6e2cdc0e9426d50bd72d866bfc80e0fba941efb3ae6d1c564d409f57d1eb117","status":"new","type":"ldt","created_timestamp":"2025-12-09T02:29:15.447243835Z","updated_timestamp":"2025-12-09T03:28:15.425567353Z","device":{"device_id":"b4ebfd0a1e2447bcb45b3b72c5794e0e","cid":"84393bf974fd44bda943a25a6a7bc27f","agent_version":"7.29.20108.0","hostname":"DWSHIN","local_ip":"26.26.26.1","external_ip":"211.198.135.5","mac_address":"00-ff-15-bf-2c-c0","platform_name":"Windows","os_version":"Windows 11"},"aggregate_id":"aggind:b4ebfd0a1e2447bcb45b3b72c5794e0e:1279796","CreatedAt":"2025-12-09T11:29:15.4472438+09:00","UpdatedAt":"2025-12-09T12:28:15.4255674+09:00"}
Quick Info
- Severity Low
- Score 30
-
Agent ID
b4ebfd0a1e2447bcb45b3b72c5794e0e
Actions