Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 4 subscribers
  • Views 615 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[CRIT-861] Advanced Threat Protection Alert Threat name....: C2/Generic-A

Sddq

2/22/2022 8:35:13 AM 0F58 PACKET 00000238853BB990 UDP Snd 212.78.160.14 c911 Q [0001 D NOERROR] A (10)monerohash(3)com(0)

2/22/2022 8:35:18 AM 0F58 PACKET 00000238853BB990 UDP Snd 2a00:edc0:107::1 d60d Q [0000 NOERROR] A (10)monerohash(3)com(0)

2/22/2022 9:07:52 AM 032C PACKET 00000238893D4C90 UDP Rcv 172.16.1.254 2754 Q [0001 D NOERROR] A (10)monerohash(3)com(0)

2/22/2022 9:07:52 AM 032C PACKET 00000238831668D0 UDP Snd 212.78.160.13 339f Q [0001 D NOERROR] A (10)monerohash(3)com(0)

I've scanned most devices within my network, but I can't seem to backtrack where this is going. 

Is there another way to find what is trying to communicate with this?



This thread was automatically locked due to age.
  • 0

    Hoi and welcome to the UTM Community!

    Please copy here one or two related lines from the Intrusion Prevention log.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML