[Informational] Uncommon process communication to a rare external host
[High] Uncommon process communication to a rare external host by an automated penetration testing tool
[Medium] Uncommon process communication to a rare external host related to LOTTunnels
[Medium] Uncommon process communication to a rare external host with a possible crypto mining tool for the first time
[Low] Uncommon process communication to a rare external host involving a code sharing website
[Low] Uncommon process communication to a rare external host with a possible exfiltration tool
[Low] Uncommon process communication to a rare external host with a rare domain public suffix
[Low] Uncommon process communication to a rare external host with an external IP in the command line
[Low] Uncommon process communication to a rare external host with global anomaly detection