Carbon Black Cloud: Alert shows that repmgr.exe dropped a known virus
book
Article ID: 287490
calendar_today
Updated On:
Products
Carbon Black Cloud Endpoint Standard (formerly Cb Defense)
Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter)
Issue/Introduction
Alert is showing the description as "The application repmgr.exe dropped a known virus onto the device."
Environment
- Carbon Black Cloud Console: 0.65.0 release
- Carbon Black Cloud Sensor: 3.6 and 3.7 releases
Cause
Code change on event collection on sensor side caused the misleading alert description.
Resolution
This has been fixed on Analytics from backend side.
Feedback
thumb_up
Yes
thumb_down
No