From 81c363ac8aa60d5159be5b7e8190b5f9be4ff1cb Mon Sep 17 00:00:00 2001
From: Oddvar Moe <oddvar.moe@gmail.com>
Date: Mon, 16 Mar 2020 19:55:27 +0100
Subject: [PATCH] Adjustment to vbc.yml contribution

---
 yml/OSBinaries/vbc.yml | 29 ++++++++++++-----------------
 1 file changed, 12 insertions(+), 17 deletions(-)

diff --git a/yml/OSBinaries/vbc.yml b/yml/OSBinaries/vbc.yml
index 967520f..52a479d 100644
--- a/yml/OSBinaries/vbc.yml
+++ b/yml/OSBinaries/vbc.yml
@@ -4,12 +4,11 @@ Description: Binary file used for compile vbs code
 Author: Lior Adar
 Created: 27/02/2020
 Commands:
-  - Command: 
-  vbc.exe /target:exe c:\temp\vbs\run.vb
+  - Command: vbc.exe /target:exe c:\temp\vbs\run.vb
     Description: Binary file used by .NET to compile vb code to .exe
     Usecase: Compile attacker code on system. Bypass defensive counter measures.
     Category: Compile
-    Privileges required:User
+    Privileges: User
     MitreID: T1127
     MitreLink: https://attack.mitre.org/techniques/T1127/
     OperatingSystem: Windows 10,7 
@@ -17,22 +16,18 @@ Commands:
     Description: Description of the second command
     Usecase: A description of the usecase
     Category: Compile
-    Privileges required:User
+    Privileges: User
     MitreID: T1127
     MitreLink: https://attack.mitre.org/techniques/T1127/
-    
+    OperatingSystem: Windows 10,7 
 Full_Path:
-  - Path:
-c:\Windows\Microsoft.NET\Framework64\v4.0.30319\vbc.exe
-C:\Windows\Microsoft.NET\Framework64\v3.5\vbc.exe
+  - Path: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\vbc.exe
+  - Path: C:\Windows\Microsoft.NET\Framework64\v3.5\vbc.exe
 Code_Sample: 
-Code:
-1.vbc.exe /target:exe c:\temp\vbs\run.vb
-2.vbc.exe -reference:Microsoft.VisualBasic.dll c:\temp\vbs\run.vb
+- Code:
 Acknowledgement:
-  - Person: 
-Lior Adar  
-Hai Vaknin(Lux)
-    
-
----
+  - Person: Lior Adar
+    Handle:
+  - Person: Hai Vaknin(Lux)
+    Handle:
+---
\ No newline at end of file