ETW Logging Disabled For rpcrt4.dll (90f342e1-1aaa-4e43-b092-39fda57ed11e)

Detects changes to the "ExtErrorInformation" key in order to disable ETW logging for rpcrt4.dll

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Modify Registry - T1112 (57340c81-c025-4189-8fa0-fc7ede51bae4)	Attack Pattern	ETW Logging Disabled For rpcrt4.dll (90f342e1-1aaa-4e43-b092-39fda57ed11e)	Sigma-Rules	1
Impair Defenses - T1562 (3d333250-30e4-4a82-9edc-756c68afc529)	Attack Pattern	ETW Logging Disabled For rpcrt4.dll (90f342e1-1aaa-4e43-b092-39fda57ed11e)	Sigma-Rules	1