ExtraHop Logo
Try ExtraHop
Menu iconX icon
  • Platformchevron right
  • Solutionschevron right
  • Modern NDRchevron right
  • Resourceschevron right
  • Companychevron right
User iconSign In
Contact Us

DETECTION OVERVIEW

DNS Request with a Suspicious Domain

Risk Factors

Attackers frequently establish servers that are designed to distribute malware or collect information from victims. Clients that communicate with this domain might be compromised and vulnerable to malicious attacks.

Kill Chain

Caution

Risk Score

60

Detection diagram
Next in Caution: Default Kali Linux SSH Keys

Attack Background

N/A

Mitigation Options

Block inbound and outbound traffic from suspicious domains at the network perimeter

Install and enable antivirus software on workstations to monitor for malware

MITRE ATT&CK ID

What else can RevealX do for you?

View our Periodic Table of use casesArrow pointing right