Skip to content

Hide Navigation Hide TOC

UAC Bypass With Fake DLL (a5ea83a7-05a5-44c1-be2e-addccbbd8c03)

Attempts to load dismcore.dll after dropping it

Cluster A Galaxy A Cluster B Galaxy B Level
UAC Bypass With Fake DLL (a5ea83a7-05a5-44c1-be2e-addccbbd8c03) Sigma-Rules DLL Side-Loading - T1574.002 (e64c62cf-9cd7-4a14-94ec-cdaac43ab44b) Attack Pattern 1
UAC Bypass With Fake DLL (a5ea83a7-05a5-44c1-be2e-addccbbd8c03) Sigma-Rules Bypass User Account Control - T1548.002 (120d5519-3098-4e1c-9191-2aa61232f073) Attack Pattern 1
DLL Side-Loading - T1574.002 (e64c62cf-9cd7-4a14-94ec-cdaac43ab44b) Attack Pattern Hijack Execution Flow - T1574 (aedfca76-3b30-4866-b2aa-0f1d7fd1e4b6) Attack Pattern 2
Abuse Elevation Control Mechanism - T1548 (67720091-eee3-4d2d-ae16-8264567f6f5b) Attack Pattern Bypass User Account Control - T1548.002 (120d5519-3098-4e1c-9191-2aa61232f073) Attack Pattern 2