medusa_ransomware

t-contreras · t-contreras · commit 970615a2c552 · 2025-03-17T15:43:50.000+01:00
diff --git a/datasets/attack_techniques/T1021.006/compmgtm_access/compmgmt_load.log b/datasets/attack_techniques/T1021.006/compmgtm_access/compmgmt_load.log
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:31159e87ede769315c099aada31b6632dd4f8a2fd982efdcda1daa879e2fdbc3
+size 4023
diff --git a/datasets/attack_techniques/T1021.006/compmgtm_access/compmgtm_access.yml b/datasets/attack_techniques/T1021.006/compmgtm_access/compmgtm_access.yml
@@ -0,0 +1,11 @@
+author: Teoderick Contreras, Splunk
+id: 2eba8f04-033e-11f0-bf1c-629be3538069
+date: '2025-03-17'
+description: Generated datasets for compmgtm access in attack range.
+environment: attack_range
+dataset:
+- https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1021.006/compmgtm_access/compmgmt_load.log
+sourcetypes:
+- 'XmlWinEventLog:Microsoft-Windows-Sysmon/Operational'
+references:
+- https://www.cisa.gov/news-events/cybersecurity-advisories/aa25-071a

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+version https://git-lfs.github.com/spec/v1`
	`2`	`+oid sha256:31159e87ede769315c099aada31b6632dd4f8a2fd982efdcda1daa879e2fdbc3`
	`3`	`+size 4023`