Rule Info
Name
Arbitrary File Download Via IMEWDBLD.EXE
Author
Swachchhanda Shrawan Poudel
Description
Detects usage of "IMEWDBLD.exe" to download arbitrary files
Date
2023-11-09 00:00:00
Modified
None
Id
863218bd-c7d0-4c52-80cd-0a96c09f54af
Tags
attack.defense-evasion attack.execution attack.t1218 DEMO
Type
Community Rule
Link to Public Repo