I am stuck in the first question of the skills assessments part of the Windows Event Logs and finding evil module. I see all ID 7 logs. I literally went one by one to see if one of them has an image path that is suspicious ALSO with the imageloaded’s path… Please I need some advice in this. THANKS
Question: By examining the logs located in the “C:\Logs\DLLHijack” directory, determine the process responsible for executing a DLL hijacking attack. Enter the process name as your answer. Answer format: _.exe