Merge pull request #11440 from Azure/v-visodadasi/MaliciousURL

Removed the broken URL in Endpoint Threat Protection Essentials

Author: v-prasadboke

Solutions/Endpoint Threat Protection Essentials/Analytic Rules/MacroInvokingShellBrowserWindowCOMObjects.yaml

@@ -1,8 +1,7 @@
 id: e7470b35-0128-4508-bfc9-e01cfb3c2eb7
 name: Detecting Macro Invoking ShellBrowserWindow COM Objects
 description: |
-  'This query detects a macro invoking ShellBrowserWindow COM Objects evade naive parent/child Office detection rules.
-  Ref: https://blog.menasec.net/2019/02/threat-hunting-doc-with-macro-invoking.html'
+  'This query detects a macro invoking ShellBrowserWindow COM Objects evade naive parent/child Office detection rules.'
 severity: Medium
 status: Available
 requiredDataConnectors:
@@ -45,5 +44,5 @@ entityMappings:
     fieldMappings:
       - identifier: Name
         columnName: User
-version: 1.0.3
+version: 1.0.4
 kind: Scheduled

Solutions/Endpoint Threat Protection Essentials/Package/3.0.5.zip

@@ -142,7 +142,7 @@
                 "name": "analytic5-text",
                 "type": "Microsoft.Common.TextBlock",
                 "options": {
-                  "text": "This query detects a macro invoking ShellBrowserWindow COM Objects evade naive parent/child Office detection rules.\nRef: https://blog.menasec.net/2019/02/threat-hunting-doc-with-macro-invoking.html"
+                  "text": "This query detects a macro invoking ShellBrowserWindow COM Objects evade naive parent/child Office detection rules."
                 }
               }
             ]