Managed Sentinel – Alert 170
| Alert ID | MS-A170 |
| Alert Name | COVID 19 IP address IOC detected |
| Description | This alert triggers when an connection to an IP address related to COVID-19 malware is detected in CommonSecurityLog. |
| Severity Level | Medium |
| Threat Indicator | |
| MITRE ATT&CK Tactics | Credential Access Lateral Movement Privilege Escalation |
| Log sources | CommonSecurityLog |
| False Positives | |
| Recommendations |