User Profile
JBWfH2365
Copper Contributor
Joined 3 years ago
User Widgets
Recent Discussions
OneDriveTemp Folder holder hashes
I have a user who's OneDriveTemp folder has a file with just hashes but these hashes are triggering alerts in our EDR tool. The hashes don't return any results in analysis tools such as VirusTotal and we have deleted the file in the past but it gets recreated.623Views0likes0CommentsOneDriveTemp Folder holder hashes
I have a user who's OneDriveTemp folder has a file with just hashes but these hashes are triggering alerts in our EDR tool. The hashes don't return any results in analysis tools such as VirusTotal and we have deleted the file in the past but it gets recreated.1.1KViews0likes1CommentMicrosoft Sentinel Potentially malicious events and Incidents
Hi, I'm relatively new to MS Sentinel and have investigated some incidents but found the Potentially malicious events on the Overview page. There were a lot of events on this map but no incidents reported. My questions are: 1. What is the difference between the Potentially malicious events and Incidents in Sentinel? 2. Do the events in the Potentially malicious events map relate to activity that affects your environment or does it apply more to the activity that the MS TI team is seeing in the wild? Thank you! Jennifer3.8KViews0likes1Comment
Groups
Recent Blog Articles
No content to show