Managed Sentinel – Alert 170

Alert IDMS-A170
Alert NameCOVID 19 IP address IOC detected
DescriptionThis alert triggers when an connection to an IP address related to COVID-19 malware is detected in CommonSecurityLog.
Severity LevelMedium
Threat Indicator
MITRE ATT&CK TacticsCredential Access
Lateral Movement
Privilege Escalation
Log sourcesCommonSecurityLog
False Positives
Recommendations