Think you have a false positive on this rule?

Sid 1-50125

Message

MALWARE-CNC Win.Trojan.Kpot variant outbound connection

Summary

This event is generated when there is Win.Trojan.Kpot C2 communication.

Impact

A Network Trojan was detected

Detailed information

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Contributors

  • Cisco Talos Intelligence Group

Additional References

  • www.virustotal.com/#/file/366833f25c439716e810a14c1ad365a85ee080d2aab307cd0a725cbe09cbf6af/detection