UAC Bypass via Windows Firewall Snap-In Hijack (e52cb31c-10ed-4aea-bcb7-593c9f4a315b)
Detects attempts to bypass User Account Control (UAC) by hijacking the Microsoft Management Console (MMC) Windows Firewall snap-in
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Abuse Elevation Control Mechanism - T1548 (67720091-eee3-4d2d-ae16-8264567f6f5b) | Attack Pattern | UAC Bypass via Windows Firewall Snap-In Hijack (e52cb31c-10ed-4aea-bcb7-593c9f4a315b) | Sigma-Rules | 1 |