Access official resources from Carbon Black experts
The application <OfficeApp> launched a document that contains macro content which performs malicious WMI process execution techniques. A Deny policy action was applied.
Applications at path: **\<OfficeApp> Operation attempt: Performs any API operation Action: Bypass Example for Excel Applications at path: **\excel.exe Operation attempt: Performs any API operation Action: Bypass
Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.