valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-06 17:35:19 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix: bugfix in Judgement Panda rule

Browse Source
This commit is contained in:
Florian Roth 2019-02-21 09:50:49 +01:00
parent 5935eaa572
commit 3a994d0d63
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
rules/apt/apt_judgement_panda_gtr19.yml
View File

@ -57,5 +57,5 @@ detection:
- '*copy .\1.7z \\*'
- '*copy \\client\c$\aaaa\*'
selection2:
EventID: 1
EventID: 4688
NewProcessName: 'C:\Users\Public\7za.exe'