Meraki

Community

About Kelkar

Re: Malicious File Detected

by in Dashboard & Administration
‎Jan 31 2024 10:46 AM
2 Kudos
‎Jan 31 2024 10:46 AM
2 Kudos
Hello,   Thank you for the feedback. It turns out the issue was from our MSP running a script without notifying me 😑   Sorry for the trouble!  ... View more

Malicious File Detected

by in Dashboard & Administration
‎Jan 31 2024 10:13 AM
‎Jan 31 2024 10:13 AM
Hello,   I have detected a file that was flagged by our Cisco Endpoint protection.   File Name: Get-NewLocalAdmin.ps1 Detection: W32.CFAB3E3BCA-95.SBX.TG SHA 256: cfab3e3bca1517a535358cef7b206c65abb02470495ac929ca7b3ee0cfe3fab8   It looks like it spread across a lot of our computers and servers but it was denied. I have put it under the blocked application list.   I also found another file called "Set-LocalAdmin.ps1"   They were created in the ProgramData folder and the folder was called _Automation   I would like any advice if possible!     ... View more
My Top Kudoed Posts
© 2024 Cisco Systems, Inc.