Hi Learningmandan,
Do you have a source IP? If not, check machine timeline to see if you can find it.
These are almost certainly RDP connection attempts.
Also, you can look at the target device's list of IP addresses in defender. Look for something that stands out.
Either this device is on the internet without NAT/firewall blocking RDP, or someone/something is on the inside trying to connect.
-------------------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept as answer--