Question

APT 34 uses the following series of commands strung together in a batch file that it...

APT 34 uses the following series of commands strung together in a batch file that it runs on a victim’s computer. Explain what each of these commands does and how the results would benefit APT 34 ?
whoami & hostname & ipconfig /all & net user /domain 2>&1 & net group /domain 2>&1 & net group "domain admins" /domain 2>&1 & net group "Exchange Trusted Subsystem" /domain 2>&1 & net accounts /domain 2>&1 & net user 2>&1 & net localgroup administrators 2>&1 & netstat -an 2>&1 & tasklist 2>&1 & sc query 2>&1 & systeminfo 2>&1 & reg query "HKEY_CURRENT_USER\Software\Microsoft\Terminal Server Client\Default" 2>&1

0 0
Add a comment Improve this question Transcribed image text
Answer #1

whoami: provides the user name who is logged in

hostname: It provides the hostname of the system.

ipconfig /all: Provides details of all the network interfaces

net user /domain : Provides the users of the active directory users and computers.

net group /domain: provides the group and performs the operation on the domain controller present in the current domain.

net group "domain admins" /domain: Query the users from domain admins in the current domain.

net group "Exchange Trusted Subsystem" /domain: can be checked for the Exchange Trusted Subsystem groups.

net accounts /domain: This command Updates the user accounts into the database and modifies the password and the logon requirements for all the accounts.

net user: it displays the user account information.

net localgroup administrators: It displays the local administrators group on the system.

netstat -an: It displays the active TCP connection.

tasklist: It displays the list of currently running processes on the computer.

sc query: It queries the status of the service.

systeminfo: This displays the OS configuration information.

reg query "HKEY_CURRENT_USER\Software\Microsoft\Terminal Server Client\Default": this is used to query the registry.

Add a comment
Know the answer?
Add Answer to:
APT 34 uses the following series of commands strung together in a batch file that it...
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Not the answer you're looking for? Ask your own homework help question. Our experts will answer your question WITHIN MINUTES for Free.
Similar Homework Help Questions
  • Risk management in Information Security today Everyday information security professionals are bombarded with marketing messages around...

    Risk management in Information Security today Everyday information security professionals are bombarded with marketing messages around risk and threat management, fostering an environment in which objectives seem clear: manage risk, manage threat, stop attacks, identify attackers. These objectives aren't wrong, but they are fundamentally misleading.In this session we'll examine the state of the information security industry in order to understand how the current climate fails to address the true needs of the business. We'll use those lessons as a foundation...

ADVERTISEMENT
Free Homework Help App
Download From Google Play
Scan Your Homework
to Get Instant Free Answers
Need Online Homework Help?
Ask a Question
Get Answers For Free
Most questions answered within 3 hours.
ADVERTISEMENT
ADVERTISEMENT