Rule Info
Name
Renamed Microsoft Teams Execution
Author
Nasreddine Bencherchali (Nextron Systems)
Description
Detects the execution of a renamed Microsoft Teams binary.
Reference
Internal Research
Date
2024-07-12 00:00:00
Modified
None
Id
88f46b67-14d4-4f45-ac2c-d66984f22191
Tags
attack.defense-evasion DEMO
Type
Community Rule
Link to Public Repo