Managed Sentinel – Alert 171

Alert IDMS-A171
Alert NamePotential C&C traffic detected in URL request
DescriptionThis alert detects URLs that end php pages used by known malware. See https://talosintelligence.com/zeus_trojan.
Severity LevelHigh
Threat Indicator
MITRE ATT&CK TacticsCommandAndControl
Log sourcessquid logs
False Positives
Recommendations