ProcessHacker Privilege Elevation (c4ff1eac-84ad-44dd-a6fb-d56a92fc43a9)

Detects a ProcessHacker tool that elevated privileges to a very high level

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Windows Service - T1543.003 (2959d63f-73fd-46a1-abd2-109d7dcede32)	Attack Pattern	ProcessHacker Privilege Elevation (c4ff1eac-84ad-44dd-a6fb-d56a92fc43a9)	Sigma-Rules	1
ProcessHacker Privilege Elevation (c4ff1eac-84ad-44dd-a6fb-d56a92fc43a9)	Sigma-Rules	Service Execution - T1569.002 (f1951e8a-500e-4a26-8803-76d95c4554b4)	Attack Pattern	1
Windows Service - T1543.003 (2959d63f-73fd-46a1-abd2-109d7dcede32)	Attack Pattern	Create or Modify System Process - T1543 (106c0cf6-bf73-4601-9aa8-0945c2715ec5)	Attack Pattern	2
System Services - T1569 (d157f9d2-d09a-4efa-bb2a-64963f94e253)	Attack Pattern	Service Execution - T1569.002 (f1951e8a-500e-4a26-8803-76d95c4554b4)	Attack Pattern	2