Skip to content

Hide Navigation Hide TOC

Manipulation of User Computer or Group Security Principals Across AD (b29a93fb-087c-4b5b-a84d-ee3309e69d08)

Adversaries may create a domain account to maintain access to victim systems. Domain accounts are those managed by Active Directory Domain Services where access and permissions are configured across systems and services that are part of that domain..

Cluster A Galaxy A Cluster B Galaxy B Level
Domain Account - T1136.002 (7610cada-1499-41a4-b3dd-46467b68d177) Attack Pattern Manipulation of User Computer or Group Security Principals Across AD (b29a93fb-087c-4b5b-a84d-ee3309e69d08) Sigma-Rules 1
Create Account - T1136 (e01be9c5-e763-4caf-aeb7-000b416aef67) Attack Pattern Domain Account - T1136.002 (7610cada-1499-41a4-b3dd-46467b68d177) Attack Pattern 2