From ed7d3faabda7b4e082b958f9e0dd5a9787d9f5bb Mon Sep 17 00:00:00 2001
From: CircleCI Atomic Red Team GUID generator <email>
Date: Thu, 7 Jan 2021 16:43:06 +0000
Subject: [PATCH] Generate GUIDs from job=generate_and_commit_guids_and_docs
 branch=master [skip ci]

---
 atomics/T1047/T1047.yaml | 1 +
 atomics/used_guids.txt   | 1 +
 2 files changed, 2 insertions(+)

diff --git a/atomics/T1047/T1047.yaml b/atomics/T1047/T1047.yaml
index a4456299..ba0b9e2c 100644
--- a/atomics/T1047/T1047.yaml
+++ b/atomics/T1047/T1047.yaml
@@ -107,6 +107,7 @@ atomic_tests:
       wmic /user:#{user_name} /password:#{password} /node:"#{node}" process where name='#{process_to_execute}' delete >nul 2>&1
     name: command_prompt
 - name: Create a Process using WMI Query and an Encoded Command
+  auto_generated_guid: 7db7a7f9-9531-4840-9b30-46220135441c
   description: |
     Solarigate persistence is achieved via backdoors deployed via various techniques including using PowerShell with an EncodedCommand
      Powershell -nop -exec bypass -EncodedCommand <encoded command>
diff --git a/atomics/used_guids.txt b/atomics/used_guids.txt
index 7ad0fdd2..f36777d6 100644
--- a/atomics/used_guids.txt
+++ b/atomics/used_guids.txt
@@ -648,3 +648,4 @@ a524ce99-86de-4db6-b4f9-e08f35a47a15
 129efd28-8497-4c87-a1b0-73b9a870ca3e
 f14d956a-5b6e-4a93-847f-0c415142f07d
 c2969434-672b-4ec8-8df0-bbb91f40e250
+7db7a7f9-9531-4840-9b30-46220135441c