| Timestamp | Source IP | Source Port | Destination IP | Destination Port | Protocol | GID | SID | REV | Signature | Category | Severity |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2026-04-13 11:27:32.983 | 192.168.3.106 [VT] | 52747 | 8.8.8.8 [VT] | 53 | UDP | 1 | 2037168 | 1 | ET INFO Microsoft Attack Simulation Training Domain in DNS Lookup (mcsharepoint .com) | Misc activity | 3 |
| 2026-04-13 11:27:33.310 | 150.171.109.213 [VT] | 443 | 192.168.3.106 [VT] | 49246 | TCP | 1 | 2037205 | 1 | ET INFO Observed Microsoft Attack Simulation Training SSL Cert (attemplate .com) | Misc activity | 3 |
| 2026-04-13 11:27:33.919 | 150.171.109.213 [VT] | 443 | 192.168.3.106 [VT] | 49256 | TCP | 1 | 2037205 | 1 | ET INFO Observed Microsoft Attack Simulation Training SSL Cert (attemplate .com) | Misc activity | 3 |
| 2026-04-13 11:27:34.096 | 150.171.109.213 [VT] | 443 | 192.168.3.106 [VT] | 49268 | TCP | 1 | 2037205 | 1 | ET INFO Observed Microsoft Attack Simulation Training SSL Cert (attemplate .com) | Misc activity | 3 |