Check Point Endpoint Security Initial Client for Windows - Privilege Escalation to SYSTEM - SafeBreach
Tags
attack-pattern: Data Python - T1059.006 Software - T1592.002 Windows Service - T1543.003 Connection Proxy - T1090
Show in Graph
Common Information
Type Value
UUID be6ff7da-a990-4a03-a200-c68233812488
Fingerprint 88ab55d5fb2585a1
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 27, 2022, 7:35 a.m.
Added to db Feb. 17, 2023, 11:33 p.m.
Last updated Sept. 3, 2024, 5:39 a.m.
Headline UNKNOWN
Title Check Point Endpoint Security Initial Client for Windows - Privilege Escalation to SYSTEM - SafeBreach
Detected Hints/Tags/Attributes 37/1/6
Source URLs
Redirection Url
Details Source https://safebreach.com/Post/Check-Point-Endpoint-Security-Initial-Client-for-Windows-Privilege-Escalation-to-SYSTEM
Details Redirection https://www.safebreach.com/Post/Check-Point-Endpoint-Security-Initial-Client-for-Windows-Privilege-Escalation-to-SYSTEM
Details Source https://www.safebreach.com/resources/check-point-endpoint-security-initial-client-for-windows-privilege-escalation-to-system/
URL Provider
Details Provider Source level domain
Details safebreach.com www.safebreach.com
Details safebreach.com safebreach.com
Attributes
Details Type #Events CTI Value
Details CVE 2 
cve-2019-8461
Details File 3 
cpda.exe
Details File 3 
idafserverhostservice.exe
Details File 2 
atl110.dll
Details File 1 
idafserver.dll
Details File 1 
daf_logger.dll