Potentially Suspicious Ping/Copy Command Combination (ded2b07a-d12f-4284-9b76-653e37b6c8b0)

Detects uncommon and potentially suspicious one-liner command containing both "ping" and "copy" at the same time, which is usually used by malware.

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Potentially Suspicious Ping/Copy Command Combination (ded2b07a-d12f-4284-9b76-653e37b6c8b0)	Sigma-Rules	File Deletion - T1070.004 (d63a3fb8-9452-4e9d-a60a-54be68d5998c)	Attack Pattern	1
Indicator Removal - T1070 (799ace7f-e227-4411-baa0-8868704f2a69)	Attack Pattern	File Deletion - T1070.004 (d63a3fb8-9452-4e9d-a60a-54be68d5998c)	Attack Pattern	2