<<< Hide Navigation Hide TOC >>>
Potentially Suspicious WebDAV LNK Execution (1412aa78-a24c-4abd-83df-767dfb2c5bbe)
Detects possible execution via LNK file accessed on a WebDAV server.
Cluster A![]() |
Galaxy A![]() |
Cluster B![]() |
Galaxy B![]() |
Level![]() |
---|---|---|---|---|
PowerShell - T1059.001 (970a3432-3237-47ad-bcca-7d8cbb217736) | Attack Pattern | Potentially Suspicious WebDAV LNK Execution (1412aa78-a24c-4abd-83df-767dfb2c5bbe) | Sigma-Rules | 1 |
User Execution - T1204 (8c32eb4d-805f-4fc5-bf60-c4d476c131b5) | Attack Pattern | Potentially Suspicious WebDAV LNK Execution (1412aa78-a24c-4abd-83df-767dfb2c5bbe) | Sigma-Rules | 1 |
Command and Scripting Interpreter - T1059 (7385dfaf-6886-4229-9ecd-6fd678040830) | Attack Pattern | PowerShell - T1059.001 (970a3432-3237-47ad-bcca-7d8cbb217736) | Attack Pattern | 2 |