Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Operation type for event 5058 {Solution}

Hons
Engager
‎10-14-2022 06:35 AM

Hello everyone,

Have you ever wondered why microsoft does not documented Operation types with Unicode + meaning?

You don´t need to anymore.

I have made the needed research (anyone can do) and here are the results:

%%2458 = Read

%%2459 = Write

%%2457 = Delete

 

 

 

Labels (1)
Labels
Reply
1 Solution
Solved! Jump to solution
Solution

mrthom
Engager
‎10-14-2022 07:36 AM

 have found it 😄 it is non-sense string stored in system32/msobjs.dll and some snapshot can be seen there

https://gist.github.com/brianreitz/d5b9397a2e8b3d52ceb9359897e07c3f

%%2456 : Open key file.
%%2457 : Delete key file.
%%2458 : Read persisted key from file.
%%2459 : Write persisted key to file.

View solution in original post

Reply
Solved! Jump to solution
Solution

mrthom
Engager
‎10-14-2022 07:36 AM

 have found it 😄 it is non-sense string stored in system32/msobjs.dll and some snapshot can be seen there

https://gist.github.com/brianreitz/d5b9397a2e8b3d52ceb9359897e07c3f

%%2456 : Open key file.
%%2457 : Delete key file.
%%2458 : Read persisted key from file.
%%2459 : Write persisted key to file.

Reply
Solved! Jump to solution

Hons
Engager
‎10-14-2022 08:29 AM

Thanks @mrthom.

Your version is absolutely precise 😉

Reply
Get Updates on the Splunk Community!

Index This | I’m short for "configuration file.” What am I?

May 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with a Special ...

New Articles from Academic Learning Partners, Help Expand Lantern’s Use Case Library, ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Your Guide to SPL2 at .conf24!

So, you’re headed to .conf24? You’re in for a good time. Las Vegas weather is just *chef’s kiss* beautiful in ...