Tag
medium
advisory
Outlook Security Settings Registry Modification
2 rules 1 TTPAttackers modify Outlook security settings via registry changes to enable malicious mail rules and bypass security controls, potentially leading to persistence and data compromise.
Microsoft Outlook
persistence
registry_modification
outlook
email
2r
1t
low
advisory
Werfault ReflectDebugger Persistence via Registry Modification
2 rules 2 TTPsAttackers may establish persistence by modifying the ReflectDebugger registry key associated with Windows Error Reporting to execute arbitrary code when Werfault is invoked with the '-pr' parameter.
Elastic Defend +1
persistence
registry_modification
werfault
2r
2t