Falcon Triage Methodology: Navigating CrowdStrike’s EDR for Incident Response
Tags
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 059aab97-4178-407d-b34e-e169e6b594a8 |
| Fingerprint | a80c1bd76b1f95a0 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Dec. 23, 2024, 10:16 a.m. |
| Added to db | Dec. 23, 2024, 11:17 a.m. |
| Last updated | Dec. 23, 2024, 11:18 a.m. |
| Headline | Falcon Triage Methodology: Navigating CrowdStrike’s EDR for Incident Response |
| Title | Falcon Triage Methodology: Navigating CrowdStrike’s EDR for Incident Response |
| Detected Hints/Tags/Attributes | 31/1/6 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 1 | 62cd7b447bdee3ec1670c92d9585e1fddbaa5d4ee824dee8f15940005bf95414.exe |
|
| Details | File | 53 | userinit.exe |
|
| Details | File | 1348 | explorer.exe |
|
| Details | File | 49 | winrar.exe |
|
| Details | File | 290 | chrome.exe |
|
| Details | sha256 | 1 | 62cd7b447bdee3ec1670c92d9585e1fddbaa5d4ee824dee8f15940005bf95414 |