SOC164 - Suspicious Mshta Behavior Walkthrough (EventID:114)
Letsdefend Alert Walkthrough
Feb 19, 20263 min read4
Command Palette
Search for a command to run...
#malware-analysis
Articles tagged with #malware-analysis
⭐SOC282 – Phishing Alert: Deceptive Mail Detected Walkthrough (EventID:257)
Letsdefend Alert Walkthrough
Feb 17, 20263 min read9
⭐ SOC146 – Phishing Mail Detected (Excel 4.0 Macros)[Event ID: 93]
Today, we are going to re-investigate SOC146 – Phishing Mail Detected (Excel 4.0 Macros).This alert is particularly interesting because I had investigated it almost a year ago, and revisiting it now helps reinforce how phishing investigations evolve ...
Feb 5, 20264 min read7![⭐ SOC146 – Phishing Mail Detected (Excel 4.0 Macros)[Event ID: 93]](/_next/image?url=https%3A%2F%2Fcdn.hashnode.com%2Fres%2Fhashnode%2Fimage%2Fupload%2Fv1770267982469%2Fe163139b-ccc4-4ebf-b5ff-eb1de662e1fc.png&w=3840&q=75)
SOC138 – Detected Suspicious XLS File | SOC Alert Walkthrough
In this blog, I will walk through the investigation of SOC138 – Detected Suspicious XLS File, performed on the Letsdefend.io platform. The objective of this analysis is to identify whether the detected file is malicious, determine host impact, and va...
Feb 2, 20263 min read20
🚨SOC202-FakeGPT Malicious Chrome Extension
Alert Investigation Walkthrough (LetsDefend.io) Today, I’m going to walk through my investigation of the SOC202 – FakeGPT Malicious Chrome Extension alert from LetsDefend.io. This write-up documents my step-by-step thought process as a SOC analyst, a...
Feb 1, 20264 min read12