Title
Threat Hunting Template
Query
# Title ### Description Description ### References ### Microsoft 365 Defender ``` ``` ### Microsoft Sentinel ``` ``` ### MITRE ATT&CK Mapping - Tactic: - Technique ID: - [User Execution: Malicious Link](https://attack.mitre.org/techniques/T1204/001/) ### Source ### Versioning | Version | Date | Comments | | ------------- |---------------| ----------------------------------| | 1.0 | xx/xx/202x | Initial publish |
About this query
Title
Description
Description
References
Microsoft 365 Defender
Microsoft Sentinel
MITRE ATT&CK Mapping
- Tactic:
- Technique ID:
- User Execution: Malicious Link
Source
Versioning
| Version | Date | Comments |
|---|---|---|
| 1.0 | xx/xx/202x | Initial publish |
Explanation
The query is about a technique called "User Execution: Malicious Link" in MITRE ATT&CK. It provides information about the tactic and technique ID associated with this technique. There are no references or specific details provided in the query.
Details

Michalis Michalos
Released: May 16, 2023
Tables
There is not enough information provided to determine the name of the table or tables used in the query or queries.
Keywords
DevicesIntuneUserMicrosoft 365 DefenderMicrosoft SentinelMITRE ATT&CK Mapping
Operators
- Tactic
- Technique ID
- User Execution: Malicious Link
MITRE Techniques