ProxyLogon MSExchange OabVirtualDirectory (550d3350-bb8a-4ff3-9533-2ba533f4a1c0)
Detects specific patterns found after a successful ProxyLogon exploitation in relation to a Commandlet invocation of Set-OabVirtualDirectory
Detects specific patterns found after a successful ProxyLogon exploitation in relation to a Commandlet invocation of Set-OabVirtualDirectory