This indicates detection of FireEye's Red Team tools from the disclosed security breach.

affected-products-logoAffected Products

Any unprotected system

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

This signature's action can be set to "Block" to block this application.
Please use Anti-Virus software to scan and clean the system.

Telemetry logoTelemetry


IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2024-01-22 26.719 Sig Added
2023-11-29 26.686 Sig Added
2023-11-15 26.678 Sig Added
2021-02-15 17.016 Sig Added
2021-01-13 16.997 Sig Added
2021-01-05 16.991 Sig Added
2020-12-29 16.987 Sig Added
2020-12-28 16.986 Sig Added
2020-12-22 16.984 Sig Added
2020-12-17 16.982 Sig Added