We are seeing some flags for "Onion Links" within the Malware Detection area. We however are not sure where to find the details of these detections.
Support have told us to perform some YARA scans (which isn't helpful for the NONE windows VMs that are alerting to Onion Links)...
Does anyone have any experience with this alert to guide us how to find the culprit Onion Link that is being detected?
Anything from YARA files that we could re-use to details on finding the link itself..
-
Matt.Sharpe
- Service Provider
- Posts: 236
- Liked: 20 times
- Joined: Mar 29, 2016 3:37 pm
- Full Name: Matt Sharpe
- Contact:
-
rennerstefan
- Veeam Software
- Posts: 735
- Liked: 162 times
- Joined: Jan 22, 2015 2:39 pm
- Full Name: Stefan Renner
- Location: Germany
- Contact:
Re: YARA Rule for Onion Links
Hi Matt,
did you already check the log files mentione here: post523959.html#p523959
Let us know if this helps or if you need further help.
Thanks
did you already check the log files mentione here: post523959.html#p523959
Let us know if this helps or if you need further help.
Thanks
Stefan Renner
Veeam PMA
Veeam PMA
Who is online
Users browsing this forum: Baidu [Spider] and 38 guests