Image File Execution Options Injection: Debugger

/static/assets/windows-logo.svg
This procedure makes a backup of the sethc.exe utility and modifies a registry key that configures an agent as a "debugger" for sethc.exe providing persistent backdoor access.
locked
View Command

You must be logged in to view this TTPs command.

Login

Test this TTP

Download Operator (1.7.0)