From af8de4c1fd4ae8d9986a97c59e4330c075eaa2d5 Mon Sep 17 00:00:00 2001
From: lvoloshyn-sekoia <leonid.voloshyn@sekoia.io>
Date: Mon, 9 Dec 2024 13:38:43 +0200
Subject: [PATCH] Add smart desc

---
 .../_meta/smart-descriptions.json                        | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/Trend Micro/trend-micro-vision-one-oat/_meta/smart-descriptions.json b/Trend Micro/trend-micro-vision-one-oat/_meta/smart-descriptions.json
index 01163576e..d09904742 100644
--- a/Trend Micro/trend-micro-vision-one-oat/_meta/smart-descriptions.json	
+++ b/Trend Micro/trend-micro-vision-one-oat/_meta/smart-descriptions.json	
@@ -1,4 +1,13 @@
 [
+    {
+    "value": "Observed {threat.tactic.id} tactics and {threat.technique.id}({threat.technique.subtechnique.id}) techniques on {host.ip}",
+    "conditions": [
+      { "field": "threat.tactic.id" },
+      { "field": "threat.technique.id" },
+      { "field": "threat.technique.subtechnique.id" },
+      { "field": "host.ip" }
+    ]
+  },
   {
     "value": "Observed {threat.tactic.id} tactics and {threat.technique.id} techniques on {host.ip}",
     "conditions": [