interlockrat

t-contreras · t-contreras · commit fbd286a47b1f · 2025-08-20T13:32:54.000+02:00
diff --git a/datasets/attack_techniques/T1105/dll_loaded_in_temp/dll_loaded_in_temp.yml b/datasets/attack_techniques/T1105/dll_loaded_in_temp/dll_loaded_in_temp.yml
@@ -0,0 +1,13 @@
+author: Teoderick Contreras, Splunk
+id: 7519d2b8-7db7-11f0-8ab3-629be3538069
+date: '2025-08-20'
+description: Generated datasets for dll loaded in temp in attack range.
+environment: attack_range
+directory: dll_loaded_in_temp
+mitre_technique:
+- T1105
+dataset:
+- name: windows-sysmon
+  path: datasets/attack_techniques/T1105/dll_loaded_in_temp/module_loaded_in_temp.log
+  sourcetypes: XmlWinEventLog
+  source: 'XmlWinEventLog:Microsoft-Windows-Sysmon/Operational'
diff --git a/datasets/attack_techniques/T1105/dll_loaded_in_temp/module_loaded_in_temp.log b/datasets/attack_techniques/T1105/dll_loaded_in_temp/module_loaded_in_temp.log
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:f190e90bdefef1523b5af5bade0c217c33efbd0eb8497ea2e812f805c8b1ef72
+size 3034

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+version https://git-lfs.github.com/spec/v1`
	`2`	`+oid sha256:f190e90bdefef1523b5af5bade0c217c33efbd0eb8497ea2e812f805c8b1ef72`
	`3`	`+size 3034`