A memory leak exists in recent version of the Sysmon utility that could cause a computer to run out of memory and crash if they routinely update its configuration file through a scheduled task or some other manner. Users who routinely update the configuration file should upgrade to the latest 8.0.4 version in order to resolve a memory leak issue. Other administrators, experts, and researchers have created configuration files that others can use or to base their own off of. These can then be loaded into the program to monitor various activity and information on the computer.
Source: https://www.bleepingcomputer.com/news/security/running-sysmon-800-update-to-804-to-avoid-a-memory-leak/