[Rule Tuning] Remote Execution via File Shares

### Link to Rule

_No response_

### Rule Tuning Type

Behavioral Tuning - Refining rules to better detect deviations from typical behavior.

### Description

In the rule's definition a reference to "Veeam.SQL.Service" in the file part of the sequence.
In our enviroment we use veeam and we are seeing that the file copied is Veeam.SQL.Service.exe



### Example Data

<img width="928" height="151" alt="Image" src="https://github.com/user-attachments/assets/a2761e98-a632-410c-958a-eb84ac3890ec" />

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Rule Tuning] Remote Execution via File Shares #5057

Link to Rule

Rule Tuning Type

Description

Example Data

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Rule Tuning] Remote Execution via File Shares #5057

Description

Link to Rule

Rule Tuning Type

Description

Example Data

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions