Windows Defender AMSI Trigger Detected (ea9bf0fa-edec-4fb8-8b78-b119f2528186)
Detects triggering of AMSI by Windows Defender.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Command and Scripting Interpreter - T1059 (7385dfaf-6886-4229-9ecd-6fd678040830) | Attack Pattern | Windows Defender AMSI Trigger Detected (ea9bf0fa-edec-4fb8-8b78-b119f2528186) | Sigma-Rules | 1 |