Elastic Windows Event Explorer


Publisher - Microsoft-Windows-Crypto-RSAEnh

Event ID 7

Message:

%{Status}

 Process: 	%{ProcessName}
 File Path: 	%{FileName}
 MachineKeyset: 	%{ProviderType}
 SecurityInformation: 	%{MachineKeyset}
 AppContainer: 	%{SecurityInformation}
 Error code: 	%{AppContainer}

Event Data:

# Name In Type
Out Type
1 ProcessName win:UnicodeString xs:string
2 FileName win:UnicodeString xs:string
3 ProviderType win:UInt32 xs:unsignedInt
4 MachineKeyset win:Boolean xs:boolean
5 SecurityInformation win:UInt32 xs:unsignedInt
6 AppContainer win:Boolean xs:boolean
7 Status win:UInt32 xs:unsignedInt
8 ErrorDescription win:UnicodeString xs:string

Observed Windows Versions:

Version: 0

Fingerprint: IBKUX4DDACLOA