diff --git a/atomics/T1112/T1112.yaml b/atomics/T1112/T1112.yaml
index d80f3dbc..00da411e 100644
--- a/atomics/T1112/T1112.yaml
+++ b/atomics/T1112/T1112.yaml
@@ -708,6 +708,7 @@ atomic_tests:
     name: command_prompt
     elevation_required: true
 - name: Mimic Ransomware - Enable Multiple User Sessions
+  auto_generated_guid: 39f1f378-ba8a-42b3-96dc-2a6540cfc1e3
   description: |
     This test emulates Mimic ransomware's ability to enable multiple user sessions by modifying the AllowMultipleTSSessions value within the Winlogon registry key. 
     See [Mimic Ransomware Overview] (https://www.trendmicro.com/en_us/research/23/a/new-mimic-ransomware-abuses-everything-apis-for-its-encryption-p.html)
@@ -721,6 +722,7 @@ atomic_tests:
     name: command_prompt
     elevation_required: true
 - name: Mimic Ransomware - Allow Multiple RDP Sessions per User
+  auto_generated_guid: 35727d9e-7a7f-4d0c-a259-dc3906d6e8b9
   description: |
     This test emulates Mimic ransomware's ability to enable multiple RDP sessions per user by modifying the fSingleSessionPerUser value within the Terminal Server registry key. 
     See [Mimic Ransomware Overview] (https://www.trendmicro.com/en_us/research/23/a/new-mimic-ransomware-abuses-everything-apis-for-its-encryption-p.html)
diff --git a/atomics/used_guids.txt b/atomics/used_guids.txt
index 7abe0135..0b98499a 100644
--- a/atomics/used_guids.txt
+++ b/atomics/used_guids.txt
@@ -1218,3 +1218,5 @@ c6952f41-6cf0-450a-b352-2ca8dae7c178
 8cd1947b-4a54-41fb-b5ea-07d0ace04f81
 8851b73a-3624-4bf7-8704-aa312411565c
 91f348e6-3760-4997-a93b-2ceee7f254ee
+39f1f378-ba8a-42b3-96dc-2a6540cfc1e3
+35727d9e-7a7f-4d0c-a259-dc3906d6e8b9