Microsoft Entra Suite Tech Accelerator
Aug 14 2024, 07:00 AM - 09:30 AM (PDT)
Microsoft Tech Community

Microsoft Defender for Endpoint C2 network inspected

Copper Contributor

Hello MDE Community,


Recently, on my environment I got detected suspicious URL "" from MDE on many Pcs trying to outbound connection from Google Chrome, Firefox & Edge to internet, and I trying to analysis this url on "VirusTotal and other cloud Sandbox" result few vendors flagged as Malicious site. Please kindly recommend for deep investigation from MDE. Thank

1 Reply
Could you please check the timeline of one of the endpoints in MDE , processes and files created while this request is being made. may be a packet capture on the device ?