From 185acd83cd9f9d220c5f392bb85c2bcf5fa920e0 Mon Sep 17 00:00:00 2001
From: ichiichi11 <takai.wa.hajime@gmail.com>
Date: Fri, 26 Feb 2021 20:37:24 +0900
Subject: [PATCH] =?UTF-8?q?issue57=E3=81=AB=E4=BC=B4=E3=81=86=E3=83=87?=
 =?UTF-8?q?=E3=82=B0=E3=83=AC=E3=81=AE=E4=BF=AE=E6=AD=A3=E3=80=82=E6=A4=9C?=
 =?UTF-8?q?=E7=9F=A5=E3=81=97=E3=81=9F=E3=83=AD=E3=82=B0=E3=81=AE=E6=99=82?=
 =?UTF-8?q?=E9=96=93=E3=81=8C=E5=8F=96=E5=BE=97=E3=81=A7=E3=81=8D=E3=81=AA?=
 =?UTF-8?q?=E3=81=8F=E3=81=AA=E3=81=A3=E3=81=9F=E5=95=8F=E9=A1=8C=E3=81=AE?=
 =?UTF-8?q?=E4=BF=AE=E6=AD=A3?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/detections/print.rs | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/detections/print.rs b/src/detections/print.rs
index 5bfc235d..211b039a 100644
--- a/src/detections/print.rs
+++ b/src/detections/print.rs
@@ -120,8 +120,7 @@ impl Message {
     }
 
     fn get_event_time(event_record: &Value) -> Option<DateTime<Utc>> {
-        let system_time =
-            &event_record["Event"]["System"]["TimeCreated"]["#attributes"]["SystemTime"];
+        let system_time = &event_record["Event"]["System"]["TimeCreated_attributes"]["SystemTime"];
         let system_time_str = system_time.as_str().unwrap_or("");
         if system_time_str.is_empty() {
             return Option::None;