Discussion

ridesh raju bijwe

Documenting my journey into Cybersecurity and SOC Analysis.

Feb 19

SOC164 - Suspicious Mshta Behavior Walkthrough (EventID:114)

Today we’re investigating another LetsDefend alert: SOC164 – Suspicious Mshta Behavior This alert focuses on detecting suspicious usage of a legitimate Windows binary often abused by attackers. 🔎 Alert Overview From the monitoring page, we are pro...

rideshcyber.hashnode.dev3 min read

#blueteam #cybersecurity #cybersecurity-1 #infosec-cjbi6apo9015yaywu2micx2eo #malware-analysis #letsdefend #soc-analyst #soc #incident-response

Responses

No responses yet.

Search Hashnode

SOC164 - Suspicious Mshta Behavior Walkthrough (EventID:114)

Responses

Recent in Forum