all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Need help to understand a command line code

Add to bookmarks
Aug. 3, 2023, 3:25 p.m. | /u/No-Wind3267

cybersecurity www.reddit.com

when I am monitoring in CrowdStrike EDR I had an alert which had this as command line.

"C:\\\\Windows\\System32\\cmd.exe" /RtyPe QJM.bMp|CmD

Tactic & Technique was Execution via Command and Scripting interpreter. IOA description was "A process is using the command line interface to run commands". Parent process is explorer.exe. so I have no idea which program this command line code belongs. But I have found out that this is related to Raspberry Robin malware. What I need is to understand the …

alert amp code command command line crowdstrike cybersecurity edr explorer interface ioa monitoring process run scripting tactic understand windows

Visit resource

More from www.reddit.com / cybersecurity

Need to vent. Mantrap to be used as auxiliary office… 11 hours ago | www.reddit.com
cybersecurity intern key leadership +7
DNS + Webfiltering solution(s) 11 hours ago | www.reddit.com
cybersecurity dns don love +8
Router Roulette: Cybercriminals and Nation-States Sharing Compromised Networks 11 hours ago | www.reddit.com
compromised cybercriminals cybersecurity nation +6
Attackers Planted Millions of Imageless Repositories on Docker Hub 12 hours ago | www.reddit.com
attackers cybersecurity docker docker hub +3
Fortify SCA vs SonarQube for SAST 14 hours ago | www.reddit.com
assessment cybersecurity fortify opinion +4
Where can I find a list of vulnerabilities by software providers? 14 hours ago | www.reddit.com
alerts breaches can cve +22
AI Code Assistants and Cybersecurity Risk: 3 Recent Findings 14 hours ago | www.reddit.com
code cybersecurity cybersecurity risk findings +1
London Drugs stores remain closed after 'cybersecurity incident' 15 hours ago | www.reddit.com
cybersecurity cybersecurity incident drugs incident +2
Another major pharmacy chain shuts following possible cyberattack 18 hours ago | www.reddit.com
cyberattack cybersecurity major pharmacy

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Security Engineer II- Full stack Java with React

@ JPMorgan Chase & Co. | Hyderabad, Telangana, India
View on infosec-jobs.com

Cybersecurity SecOps

@ GFT Technologies | Mexico City, MX, 11850
View on infosec-jobs.com

Senior Information Security Advisor

@ Sun Life | Sun Life Toronto One York
View on infosec-jobs.com

Contract Special Security Officer (CSSO) - Top Secret Clearance

@ SpaceX | Hawthorne, CA
View on infosec-jobs.com

Early Career Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com
View more jobs