This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects PowerShell activity over network.
Windows PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language built on the .NET Framework.
There are multiple exploitation frameworks that use Powershell as one of a vector to execute commands on remote machine.
- Various Windows Platforms.