{"blog_title":"4ensiX","published":"2022-02-24 01:17:42","title":"LetsDefend level 1 alert SOC109 - Emotet Malware Detected event-id 39","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/Z/Zarat/20220224/20220224011259.png","provider_name":"Hatena Blog","version":"1.0","author_name":"Zarat","blog_url":"https://zarat.hatenablog.com/","categories":["LetsDefend","Malware"],"url":"https://zarat.hatenablog.com/entry/2022/02/24/011742","height":"190","description":"Details playbook Define Threat Indicator Check if the malware is quarantined/cleaned Analyze Malware eee99e6d8ade9463dd206dfbad3485ea http[:]//decpak.com/cgi-bin/gU/ Check If Someone Requested the C2 Log search - 172.16.17.83 330 331 332 Containment Endpoint - Maxim 172.16.17.83 CMD History Network \u2026","type":"rich","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fzarat.hatenablog.com%2Fentry%2F2022%2F02%2F24%2F011742\" title=\"LetsDefend level 1 alert SOC109 - Emotet Malware Detected event-id 39 - 4ensiX\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","width":"100%","provider_url":"https://hatena.blog","author_url":"https://blog.hatena.ne.jp/Zarat/"}