| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-22 01:26 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-22 01:26 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-22 01:26 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 22:20 |
|
| High |
80% |
ldt |
in-bridge-40 |
The activity appears to be related to an adversary establishing persistence. The host may already be compromised and the activity should be investigated further to find the source. |
Persistence |
12-20 22:09 |
|
| High |
80% |
ldt |
in-bridge-40 |
An attempt to download malicious files from the command-line interface has been detected on your host. Adversaries might use curl or wget to download additional payloads in case of compromise. Please review the event to determine if malicious files were downloaded or if this access was expected. |
Command and Control |
12-20 22:08 |
|
| High |
80% |
ldt |
in-bridge-40 |
A script launched with a command line that is often associated with Cryptomining software. If this is unexpected, review the process tree. |
Execution |
12-20 22:08 |
|
| High |
80% |
ldt |
in-bridge-40 |
The activity appears to be related to an adversary establishing persistence. The host may already be compromised and the activity should be investigated further to find the source. |
Persistence |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
The activity appears to be related to an adversary establishing persistence. The host may already be compromised and the activity should be investigated further to find the source. |
Persistence |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
The activity appears to be related to an adversary establishing persistence. The host may already be compromised and the activity should be investigated further to find the source. |
Persistence |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
The activity appears to be related to an adversary establishing persistence. The host may already be compromised and the activity should be investigated further to find the source. |
Persistence |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 21:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 21:39 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 21:39 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 21:39 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 16:03 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 16:01 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:58 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:56 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:54 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:51 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:49 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:47 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:44 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:42 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:40 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:37 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:35 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:35 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-20 15:35 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:41 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:41 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:41 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:41 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:41 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:38 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:38 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:38 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-18 09:38 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-17 02:53 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-16 09:48 |
|
| High |
80% |
ldt |
in-bridge-40 |
Bash has created an interactive terminal for a remote host. Check the process tree to determine if malicious commands were executed and if this access was expected. |
Command and Control |
12-16 01:45 |
|