Back to list

Medium CINC-20251221-7BBF7C37 new

Aggregate ID: aggind:561559e2fcea400ba3601b74d64aa30b:4296710637

Incident Overview

Incident ID CINC-20251221-7BBF7C37
Severity Medium (70)
Status new
Alert Count 25
Host Count 1

Timeline

First Seen 2025-12-22 01:59:33
Last Seen 2025-12-22 07:03:06
Duration 0d 5h 3m
Created 2025-12-22 08:36
Updated 2026-01-13 15:14

Kill Chain Analysis

Rec... Ini... Exe... Per... Pri... Def... Cre... Dis... Lat... Col... Com... Exf... Imp...
Observed Tactics:
Machine Learning
Techniques:
Sensor-based ML

Affected Hosts (1)

DESKTOP-FNUMV3U

Related Alerts (25)

Severity Status Hostname Description Tactic Command Line Time
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 07:03
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 06:03
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 05:03
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 04:03
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 03:03
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:35
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:35
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:31
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:31
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:27
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:27
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:23
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:23
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:19
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:19
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:15
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:15
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:11
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:11
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:07
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:07
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:03
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:03
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 02:00
High new DESKTOP-FNUMV3U A file written to the file system meets the on-sensor machine learning high confidence threshold for malicious files. Detection is based on a high degree of entropy, packing, anti-malware evasion, or other similarity to known malware. Machine Learning "C:\Program Files\dotnet\dotnet.exe" exec "C:\Program Files\dotnet\sdk\9.0.308\Roslyn\bincore\VBCSCompiler.dll" "-pipename:lQ8Fu46oQU1BfJtlTm8DEz2G5V6bWXHH8dfExVGxk9M" 12-22 01:59