public-mirrors/LOLBAS
1
0
Fork 0
mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2024-12-28 15:58:24 +01:00
Code Issues Projects Releases Wiki Activity

Update Adplus.yml Tags

Browse Source 
Changed Tags:
- Execute CMD
- Execute EXE
This commit is contained in:
hegusung 2024-10-13 21:21:32 +02:00 committed by GitHub
parent 16d84e33e6
commit a01bab762e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
yml/OtherMSBinaries/Adplus.yml
View File

@ -18,6 +18,8 @@ Commands:
Privileges: User
MitreID: T1127
OperatingSystem: All Windows
Tags:
- Execute: CMD
- Command: adplus.exe -c config-adplus.xml
Description: Dump process memory using adplus config file (see Resources section for a sample file).
Usecase: Run commands under a trusted Microsoft signed binary
@ -32,6 +34,9 @@ Commands:
Privileges: User
MitreID: T1127
OperatingSystem: All windows
Tags:
- Execute: CMD
- Execute: EXE
Full_Path:
- Path: C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\adplus.exe
- Path: C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\adplus.exe