From a5b4b276d4ce1b9b9fd1f82c35ac441e0e1ed817 Mon Sep 17 00:00:00 2001
From: Bart <bartblaze@users.noreply.github.com>
Date: Thu, 14 Nov 2019 22:26:22 +0100
Subject: [PATCH] Add scriptlets

Adds .sct and .vbe.
---
 rules/windows/malware/av_relevant_files.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/rules/windows/malware/av_relevant_files.yml b/rules/windows/malware/av_relevant_files.yml
index 495525a81..747bd494a 100644
--- a/rules/windows/malware/av_relevant_files.yml
+++ b/rules/windows/malware/av_relevant_files.yml
@@ -32,6 +32,8 @@ detection:
             - '*.hta'
             - '*.lnk'
             - '*.scf'
+            - '*.sct'
+            - '*.vbe'
             - '*.wsf'
             - '*.wsh'
     condition: selection