From 8f016bb857ebd5da959489f299d0dd0b9be371df Mon Sep 17 00:00:00 2001
From: aprakash13 <37783395+aprakash13@users.noreply.github.com>
Date: Wed, 11 Nov 2020 11:32:45 -0800
Subject: [PATCH] Update BariumIPIOC.yaml

---
 Detections/MultipleDataSources/BariumIPIOC.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Detections/MultipleDataSources/BariumIPIOC.yaml b/Detections/MultipleDataSources/BariumIPIOC.yaml
index 1f27b15b85..12e878000c 100644
--- a/Detections/MultipleDataSources/BariumIPIOC.yaml
+++ b/Detections/MultipleDataSources/BariumIPIOC.yaml
@@ -2,7 +2,7 @@ id: 6ee72a9e-2e54-459c-bc9a-9c09a6502a63
 name: Known Barium IP 
 description: | 
   'Identifies a match across various data feeds for IP IOCs related to the Barium activity group.  
-References: https://www.justice.gov/opa/pr/seven-international-cyber-defendants-including-apt41-actors-charged-connection-computer' 
+   References: https://www.justice.gov/opa/pr/seven-international-cyber-defendants-including-apt41-actors-charged-connection-computer' 
 severity: High 
 requiredDataConnectors: 
   - connectorId: Office365 
@@ -138,4 +138,4 @@ query:  |
   | where RemoteIP in (IPList)  
   | extend timestamp = TimeGenerated, IPCustomEntity = RemoteIP, HostCustomEntity = DeviceName  
   ) 
-  ) 
\ No newline at end of file
+  )