Hide Navigation Hide TOC

Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)

Reg is a Windows utility used to interact with the Windows Registry. It can be used at the command-line interface to query, add, modify, and remove information. ^{[Microsoft Reg]}

Utilities such as Reg are known to be used by persistent threats. ^{[Windows Commands JPCERT]}

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Gamaredon Group (41e8b4a4-2d31-46ee-bc56-12375084d067)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
Rancor (021b3c71-6467-4e46-a413-8b726f066f2c)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
UNC3966 (b07431f8-fcf0-4204-8e7c-138eb5cd5342)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
Daggerfly (f0dab388-1641-50aa-b0b2-6bdb816e0490)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
Turla (47ae4fb1-fc61-4e8e-9310-66dda706e1a2)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
Volt Typhoon (4ea1245f-3f35-5168-bd10-1fc49142fd4e)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
Flax Typhoon (b39d8eae-12e3-4903-a387-4c31d16a73b2)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
Volt Typhoon - Tidal (3290dcb9-5781-4b87-8fa0-6ae820e152cd)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
OilRig (d01abdb1-0378-4654-aa38-1a4a292703e2)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
BianLian Ransomware Group (a2add2a0-2b54-4623-a380-a9ad91f1f2dd)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
GALLIUM (15ff1ce0-44f0-4f1d-a4ef-83444570e572)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1
Dragonfly (472080b0-e3d4-4546-9272-c4359fe856e1)	Tidal Groups	Reg (d796615c-fa3d-4afd-817a-1a3db8c73532)	Tidal Software	1