PHANTOM::
RESPONSE
Incident Response Command Center
PHANTOM::
RESPONSE
Dashboard
IR Playbook
Attack Surface
Malware Sandbox
LIVE
00:00:00
3
Critical Incidents
▲ +1 from yesterday
12
Active Cases
▲ +3 this week
4.2h
Avg MTTR
▼ -0.8h improved
847
Resolved (YTD)
97.3% SLA met
INCIDENT VOLUME (30D)
SEVERITY DISTRIBUTION
LIVE INCIDENT FEED
ATTACK VECTOR BREAKDOWN
Active Incidents
+ New Incident
Playbook:
NIST SP 800-61r2
Export Timeline
Incident Log
Evidence Tracker
Add
Containment Actions
Enumerate
Full Recon
DNS & SUBDOMAIN ENUMERATION
0 found
Subdomain
Type
Value
Status
TECHNOLOGY STACK
VULNERABILITY ASSESSMENT
0 findings
EXPOSED SERVICES & PORTS
Port
Service
Version
Risk
Sample Analysis
Sample Selection
— Select malware sample —
Emotet Dropper (doc.xlsm)
Cobalt Strike Beacon (svc.exe)
LockBit 4.0 (locker.dll)
RedLine Stealer (update.exe)
AsyncRAT (runtime.exe)
XMRig Cryptominer (svchost_.exe)
▶ Detonate in Sandbox
Sample Info
Detection Signatures
MITRE ATT&CK
Behavior Timeline
Process Tree
Network Connections
Registry Modifications
File Operations
Engine: Online
Threat Intel: Synced
Sandbox: Idle
PHANTOM::RESPONSE v2.0 — nexusfang-tech