MALWARE-OTHER --
MALWARE-OTHER Win.Backdoor.Agent inbound request attempt
This event is generated when Win.Backdoor.Agent is detected on the network. Impact: A Network Trojan was detected Details: This rule fires when an inbound request is being attempted by a client connecting to a backdoor that has been placed on the network by a malicious actor. Ease of Attack:
This event is generated when Win.Backdoor.Agent is detected on the network.
No public information
No known false positives
Cisco Talos Intelligence Group Yaser Mansour
No rule groups
N/A
Not Applicable
CVE-2019-0604 |
Loading description
|
Tactic: Command and Control
Technique: Standard Application Layer Protocol
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org