Microsoft Sysmon now detects when executables files are created

Microsoft has released Sysmon 15, converting it into a protected process and adding the new ‘FileExecutableDetected’ option to log when executable files are created. […]   Read More 

BleepingComputer