/hub/author/sigmahq/scenarios/proc_creation_win_pua_rclone_execution