This is how we can write a simple filename IOC pattern with filter in the format I use in THOR and LOKI scanners pattern;score;filter This can be used to trigger on files located in unusual folders ADModule tweet https://t.co/RFtpJlOzgF https://t.co/3J8fagZjTm
— Florian Roth ⚡ (@cyb3rops) Jan 24, 2023
from Twitter https://twitter.com/cyb3rops
January 24, 2023 at 07:34AM
via IFTTT
This is how we can write a simple filename IOC pattern with filter in the format I use in THOR and LOKI scanners pattern;score;filter This can be used to trigger on files located in unusual folders ADModule tweet https://t.co/RFtpJlOzgF https://t.co/3J8fagZjTm
cyb3rops
https://twitter.com/cyb3rops/status/1617863397504057344
https://t.co/RFtpJlOzgF
