New BgInfo.EXE Custom VBScript Registry Configuration (992dd79f-dde8-4bb0-9085-6350ba97cfb3)
Detects setting of a new registry value related to BgInfo configuration, which can be abused to execute custom VBScript via "BgInfo.exe"
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| New BgInfo.EXE Custom VBScript Registry Configuration (992dd79f-dde8-4bb0-9085-6350ba97cfb3) | Sigma-Rules | Modify Registry - T1112 (57340c81-c025-4189-8fa0-fc7ede51bae4) | Attack Pattern | 1 |