Kerberoasting spn request with RC4 encryption

Description

This search detects a potential kerberoasting attack via service principal name requests