Update proc_creation_win_susp_base64_load.yml

2022-06-01 13:06:17 +02:00
parent 017813d3fa
commit a0aff0f680
1 changed files with 2 additions and 2 deletions
@@ -2,7 +2,7 @@ title: Suspicious Encoded Obfuscated LOAD String
 id: 9c0295ce-d60d-40bd-bd74-84673b7592b1
 status: test
 description: Detects suspicious base64 encoded and obbfuscated LOAD string often used for reflection.assembly load
-author: "pH-T"
+author: pH-T
 related:
  - id: 62b7ccc9-23b4-471e-aa15-6da3663c4d59
    type: similar
@@ -51,4 +51,4 @@ fields:
  - CommandLine
 falsepositives:
  - Unlikely
-level: high
+level: high