Threat Hunt Deep Dives: User Account Control Bypass Via Registry…
Tags
attack-pattern: Technical Blogs Powershell - T1059.001 Software - T1592.002 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 5fc39144-46d2-4e94-a82f-8bf6f202dba6
Fingerprint f499e155b93da25b
Analysis status DONE
Considered CTI value 0
Text language
Published Aug. 19, 2024, midnight
Added to db Aug. 31, 2024, 5:10 a.m.
Last updated Nov. 17, 2024, 6:30 p.m.
Headline Threat Hunt Deep Dives: User Account Control Bypass Via Registry Modification
Title Threat Hunt Deep Dives: User Account Control Bypass Via Registry…
Detected Hints/Tags/Attributes 17/1/5
Source URLs
Redirection Url
Details Source https://intel471.com/blog/threat-hunt-deep-dives-user-account-control-bypass-via-registry-modification
URL Provider
Details Provider Source level domain
Details intel471.com intel471.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 138 Intel471 https://intel471.com/blog/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 144 
www.fortinet.com
Details Domain 3 
cqureacademy.com
Details File 55 
control.exe
Details Url 1 
https://www.fortinet.com/blog/threat-research/offense-and-defense-a-tale-of-two-sides-bypass-uac
Details Url 1 
https://cqureacademy.com/cqure-labs/cqlabs-how-uac-bypass-methods-really-work-by-adrian-denkiewicz