FileFix - Command Evidence in TypedPaths from Browser File Upload Abuse (4fee3d51-8069-4a4c-a0f7-924fcaff2c70)
Detects commonly-used chained commands and strings in the most recent 'url' value of the 'TypedPaths' key, which could be indicative of a user being targeted by the FileFix technique.