Firepower Malware Events

Classification

Rule Name	Rule Type	Classification	Common Event
Syslog - Cisco FirePOWER	Base Rule	Malware	Detected Malware Activity

Mapping with LogRhythm Schema

Device Key in Log Message	LogRhythm Schema	Data Type
N/A	<severity>	String
N/A	<dname>	String
N/A	<vendorinfo>	String
N/A	<hash>	String
N/A	<objecttype>	String
N/A	<threatname>	String
N/A	<sip>	Number
N/A	<dip>	Number