detection-hackathon-apt29 icon indicating copy to clipboard operation
detection-hackathon-apt29 copied to clipboard

Published 20 hours ago verified publisher icon OTRF

13.C) System Owner/User Discovery

Open Cyb3rWard0g opened this issue 4 years ago • 0 comments

Description

The attacker performs local enumeration using various Windows API calls, specifically gathering current user context (T1033)

Cyb3rWard0g avatar May 02 '20 11:05 Cyb3rWard0g