THREAT MONITORING

threat_monitoring

---

ThreatMonitoringAnalysisFailed

Failed to run Threat Monitoring analysis of snapshot taken on ${snapshotDate} of '${snappableName}': ${failureReason}.

Severity	Status	Audit Event
Warning	Failure	No

ThreatMonitoringAnalysisStarted

Started Threat Monitoring analysis of snapshot taken on ${snapshotDate} of '${snappableName}'.

Severity	Status	Audit Event
Info	TaskSuccess	No

ThreatMonitoringAnalysisSucceeded

Completed Threat Monitoring analysis of snapshot taken on ${snapshotDate} of '${snappableName}'.

Severity	Status	Audit Event
Info	Success	No

ThreatMonitoringFullAnalysisFailed

Failed to run a full Threat Monitoring analysis on '${snappableName}' using YARA Threat Feed  version ${yaraTfVersion}: ${failureReason}.

Severity	Status	Audit Event
Warning	Failure	No

ThreatMonitoringFullAnalysisStarted

Started a full Threat Monitoring analysis on ${snappableName}' using YARA Threat Feed version ${yaraTfVersion}.

Severity	Status	Audit Event
Info	TaskSuccess	No

ThreatMonitoringFullAnalysisSucceeded

Completed full Threat Monitoring analysis on '${snappableName}' using YARA Threat Feed version ${yaraTfVersion} and  Hash Threat Feed version ${hashTfVersion}.

Severity	Status	Audit Event
Info	Success	No

ThreatMonitoringFullHashAnalysisMatchesFound

Completed full Threat Monitoring hash analysis on '${snappableName}' using Hash Threat Feed version ${hashTfVersion}. Found ${numHashMatches} hash matches.

Severity	Status	Audit Event
Critical	TaskSuccess	No

ThreatMonitoringFullHashAnalysisNoMatchesFound

Completed full Threat Monitoring hash analysis on '${snappableName}' using Hash Threat Feed version ${hashTfVersion}. No matches found.

Severity	Status	Audit Event
Info	TaskSuccess	No

ThreatMonitoringFullYaraAnalysisMatchesFound

Completed full Threat Monitoring YARA analysis on  '${snappableName}' using Threat Feed version ${yaraTfVersion}.  Found ${numYaraRuleMatches} YARA rule matches.

Severity	Status	Audit Event
Critical	TaskSuccess	No

ThreatMonitoringFullYaraAnalysisNoMatchesFound

Completed full Threat Monitoring YARA analysis on '${snappableName}' using YARA Threat Feed version ${yaraTfVersion}.  No matches found.

Severity	Status	Audit Event
Info	TaskSuccess	No

ThreatMonitoringHashMatchesFound

Found file hash matches for ${numFilesWithMatches} files.

Severity	Status	Audit Event
Critical	TaskSuccess	No

ThreatMonitoringNoHashMatchesFound

Found no file hash matches.

Severity	Status	Audit Event
Info	TaskSuccess	No

ThreatMonitoringNoYaraMatchesFound

Found no YARA rule matches.

Severity	Status	Audit Event
Info	TaskSuccess	No

ThreatMonitoringYaraError

Error while analyzing YARA rule matches: ${failureReason}.

Severity	Status	Audit Event
Warning	TaskFailure	No

ThreatMonitoringYaraMatchesFound

Found ${numYaraRuleMatches} YARA rule matches.

Severity	Status	Audit Event
Critical	TaskSuccess	No