Email Attachment

https://www.mimecast.com/tech-connect/documentation/tutorials/understanding-siem-logs/

Email Attachment

Base Rule

General Email Attachment Message

Information

acc

<account>

Text/String

fileName

<objectname>

Text/String

hash

<hash>

Text/String

Size

<size>

Number

IP

<dip>

IP Address

Recipient

<recipient>

Text/String

SenderDomain

<domainorigin>

Text/String

fileExt

<objecttype>

Text/String

sender

<sender>

Text/String