Potential Execution of Sysinternals Tools (7cccd811-7ae9-4ebe-9afd-cb5c406b824b)

Detects command lines that contain the 'accepteula' flag which could be a sign of execution of one of the Sysinternals tools

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Tool - T1588.002 (a2fdce72-04b2-409a-ac10-cc1695f4fce0)	Attack Pattern	Potential Execution of Sysinternals Tools (7cccd811-7ae9-4ebe-9afd-cb5c406b824b)	Sigma-Rules	1
Tool - T1588.002 (a2fdce72-04b2-409a-ac10-cc1695f4fce0)	Attack Pattern	Obtain Capabilities - T1588 (ce0687a0-e692-4b77-964a-0784a8e54ff1)	Attack Pattern	2