Malicious_Activity_Detection_-_Malicious_file_found_Cisco AMP_General

Alert

Malicious Activity Detection - Malicious file found (Malicious Activity Detection)

SK4 unified event:
Connector/Service

Cisco AMP/General

SK4 Version:

2.3.105

Created Date:

Mon Jan 28 2019 08:22:45 GMT+0000 (Coordinated Universal Time)

Last Update:

Tue Jun 18 2019 11:12:17 GMT+0000 (Coordinated Universal Time)

Category

Security Alert

Description

A malicious file has been detected on a device.

Search query

cef_vendor="skyformation" cef_name="security-threat-detected" destinationServiceName="Cisco AMP" fileType="file"act="detect"

Parsed CEF
Unparsed raw data

Expand to see an example...

Audit sources