hxxps://github[.]com/NVISOsecurity/sigma-public/blob/master/rules/windows/process_creation/win_hack_rubeus[.]yml&source=outlook&treatment=1819&form=MY02A7&qpc=20761864643664&oid=6453c205-4486-402b-9c7c-d1677b1e7ecf&hubappid=8682d0fa-50b3-4ece-aa5b-e0b33f9919e2&hubappsubpath=/mail/AQMmAHsyRDQzRDMwRC00NkI5LTQ2RTQtODJCNy0wMkVBNjYAOUQ3MjFCfQAuAAADiKi1UeNExUiN7QQs7nF0SQEA%2F5YPvnYu3EGx0gchJ2grnQAAAgEMAAAA/id/AAQmAHsyRDQzRDMwRC00NkI5LTQ2RTQtODJCNy0wMkVBNjY5RDcyMUJ9ABAAKT8c5f%2B5G0aTlzmmY3sLOA%3D%3D/itemId/AAMmAHsyRDQzRDMwRC00NkI5LTQ2RTQtODJCNy0wMkVBNjY5RDcyMUJ9AEYAAAAAAIiotVHjRMVIje0ELO5xdEkHAP%2BWD752LtxBsdIHISdoK50AAAAAAQwAAP%2BWD752LtxBsdIHISdoK50AADtlUUIAAA%3D%3D/immutableItemId/AAkALgAAAAAAHYQDEapmEc2byACqAC%2FEWg0A%2F5YPvnYu3EGx0gchJ2grnQAAO2WOIQAA

Sharing

Target

https://github.com/NVISOsecurity/sigma-public/blob/master/rules/windows/process_creation/win_hack_rubeus.yml&source=outlook&treatment=1819&form=MY02A7&qpc=20761864643664&oid=6453c205-4486-402b-9c7c-d1677b1e7ecf&hubappid=8682d0fa-50b3-4ece-aa5b-e0b33f9919e2&hubappsubpath=/mail/AQMmAHsyRDQzRDMwRC00NkI5LTQ2RTQtODJCNy0wMkVBNjYAOUQ3MjFCfQAuAAADiKi1UeNExUiN7QQs7nF0SQEA%2F5YPvnYu3EGx0gchJ2grnQAAAgEMAAAA/id/AAQmAHsyRDQzRDMwRC00NkI5LTQ2RTQtODJCNy0wMkVBNjY5RDcyMUJ9ABAAKT8c5f%2B5G0aTlzmmY3sLOA%3D%3D/itemId/AAMmAHsyRDQzRDMwRC00NkI5LTQ2RTQtODJCNy0wMkVBNjY5RDcyMUJ9AEYAAAAAAIiotVHjRMVIje0ELO5xdEkHAP%2BWD752LtxBsdIHISdoK50AAAAAAQwAAP%2BWD752LtxBsdIHISdoK50AADtlUUIAAA%3D%3D/immutableItemId/AAkALgAAAAAAHYQDEapmEc2byACqAC%2FEWg0A%2F5YPvnYu3EGx0gchJ2grnQAAO2WOIQAA