dll-load
April 24, 2024 · View on GitHub
Description
A dll module was loaded into a process
Parameters
| Parameter | Value |
|---|---|
| Subject | dll |
| Activity | load |
| Activity Type | dll-load |
| Pretty Name | Dll Load |
Legacy Names
| Success | Fail |
|---|---|
| image-loaded | image-loaded |
Fields
The possible fields for this activity type will vary depending on whether the activity was a success or a fail.
dll-load:success
| Field | Core | Detection | Informational |
|---|---|---|---|
| cid | ✓ |
dll-load:fail
| Field | Core | Detection | Informational |
|---|---|---|---|
| failure_code | ✓ | ||
| failure_reason | ✓ | ||
| cid | ✓ |