From 6279532a13cb41e06eeb84e18ac2db211c6028c8 Mon Sep 17 00:00:00 2001
From: Qasim Qlf <qlfqasim@gmail.com>
Date: Fri, 3 Feb 2023 14:34:34 +0500
Subject: [PATCH] Update proc_creation_win_termserv_proc_spawn.yml

---
 .../process_creation/proc_creation_win_termserv_proc_spawn.yml  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/windows/process_creation/proc_creation_win_termserv_proc_spawn.yml b/rules/windows/process_creation/proc_creation_win_termserv_proc_spawn.yml
index a80d45a3d..f490fe253 100644
--- a/rules/windows/process_creation/proc_creation_win_termserv_proc_spawn.yml
+++ b/rules/windows/process_creation/proc_creation_win_termserv_proc_spawn.yml
@@ -6,7 +6,7 @@ references:
     - https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/rdp-stands-for-really-do-patch-understanding-the-wormable-rdp-vulnerability-cve-2019-0708/
 author: Florian Roth (Nextron Systems)
 date: 2019/05/22
-modified: 2023/01/25
+modified: 2023/02/03
 tags:
     - attack.initial_access
     - attack.t1190