innoloader

Author: t-contreras

detections/endpoint/detect_renamed_7_zip.yml

@@ -1,7 +1,7 @@
 name: Detect Renamed 7-Zip
 id: 4057291a-b8cf-11eb-95fe-acde48001122
-version: 9
-date: '2025-05-02'
+version: 10
+date: '2025-06-02'
 author: Michael Haag, Splunk
 status: production
 type: Hunting
@@ -43,6 +43,7 @@ references:
 tags:
   analytic_story:
   - Collection and Staging
+  - Malicious Inno Setup Loader
   asset_type: Endpoint
   mitre_attack_id:
   - T1560.001