Skip to content

Hide Navigation Hide TOC

HackTool - Impacket Tools Execution (4627c6ae-6899-46e2-aa0c-6ebcb1becd19)

Detects the execution of different compiled Windows binaries of the impacket toolset (based on names or part of their names - could lead to false positives)

Cluster A Galaxy A Cluster B Galaxy B Level
HackTool - Impacket Tools Execution (4627c6ae-6899-46e2-aa0c-6ebcb1becd19) Sigma-Rules LLMNR/NBT-NS Poisoning and SMB Relay - T1557.001 (650c784b-7504-4df7-ab2c-4ea882384d1e) Attack Pattern 1
LLMNR/NBT-NS Poisoning and SMB Relay - T1557.001 (650c784b-7504-4df7-ab2c-4ea882384d1e) Attack Pattern Adversary-in-the-Middle - T1557 (035bb001-ab69-4a0b-9f6c-2de8b09e1b9d) Attack Pattern 2