Internally known as "Log Jam", this Unicode data reflection in Windows Events allows for potential halting of log/event analysis and 3rd party processing and forwarding when utilizing the XML export feature. Deemed a potential detection evasion technique.
Tested systems:
- Windows 10 Version 2004 x64 (OS Build 19041.572) en-us