Keyword: bec_suspicious.ers
2854 Total Search   |   Showing Results : 801 - 820
  Previous   Next  
DDI-RULE-2049
Description Name: LETSENCRYPT SSL CERTIFICATE - HTTP (Response) .
DDI-RULE-2245
Description Name: DEMO RULE - DNS (Request) . This is Trend Micro detection for packets passing through DNS network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspici...
DDI-RULE-2415
Description Name: Remote Delete Registry through SMB protocol detected .
DDI-RULE-2507
Description Name: Unauthorized TESTFR IEC-104 Request .
DDI-RULE-2511
Description Name: IEC104 STOPDT CON - SCADA (Response) .
DDI-RULE-2527
Description Name: CreateService BADRABBIT - Ransomware - SMB .
DDI-RULE-2736
Description Name: ANTAK Webshell - HTTP (Request) .
DDI-RULE-2799
Description Name: Possible Scan of Points List - DNP3 (Response) Beta .
DDI-RULE-4212
Description Name: Possible Bruteforce - HTTP (Request) .
DDI-RULE-460
Description Name: NETBOT - TCP . This is Trend Micro detection for packets passing through TCP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspicious activity ...
DDI-RULE-468
Description Name: AUTORUN - HTTP (Request) - Variant 16 . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual beh...
Threat_Behavior_Detection
Micro Deep Security), Suspicious Behavior (Trend Micro OfficeScan), Suspicious Software Blocked (Trend Micro Titanium)
DDI-RULE-118
Description Name: Public C&C IP address - IRC (Request) . This is Trend Micro detection for packets passing through IRC network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual beha...
DDI-RULE-1182
Description Name: AGENT - HTTP (Request) - Variant 21 . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behav...
DDI-RULE-12
Description Name: Archive file containing file with double extension . This is Trend Micro detection for packets passing through any network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of un...
DDI-RULE-1235
Description Name: AGENT - HTTP (Request) - Variant 17 . This is Trend Micro detection for packets passing through HTTP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behav...
DDI-RULE-1495
Description Name: Possible PLUGX UDP Request . This is Trend Micro detection for packets passing through UDP network protocols that manifests Callback activities which can be a potential intrusion. Below are some indicators of unusual behavior:Suspic...
DDI-RULE-170
Description Name: ActiveX codebase pushing executable - HTTP (Response) . This is Trend Micro detection for packets passing through HTTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators o...
DDI-RULE-2659
Description Name: PHP WebShell - HTTP (Request) - Variant 2 .
DDI-RULE-2757
Description Name: ELF File requested from root directory - HTTP (Response) .