Rundll32 Execution Without Parameters (5bb68627-3198-40ca-b458-49f973db8752)
Detects rundll32 execution without parameters as observed when running Metasploit windows/smb/psexec exploit module
Detects rundll32 execution without parameters as observed when running Metasploit windows/smb/psexec exploit module