Elastic Windows Event Explorer


Publisher - Microsoft-Windows-Sysmon

Event ID 255 v3

Message:

Error report:
UtcTime: %{UtcTime}
ID: %{ID}
Description: %{Description}

Event Data:

# Name In Type
Out Type
1 UtcTime win:UnicodeString xs:string
2 ID win:UnicodeString xs:string
3 Description win:UnicodeString xs:string

Observed Windows Versions:

Version: 3

Fingerprint: NQQODTLBDAYJ4