aryma/Ares-mythic
1
0
Fork 0
mirror of https://github.com/Aryma-f4/Ares-mythic.git synced 2026-06-12 23:34:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
9f0471b6825e98cf7befb4685240c0c582079467
Ares-mythic/documentation-payload/ares/commands/reg_write_value.md
Aryma 03d283cf49 refactor(payload): rename apollo to ares and update documentation 
This commit renames the Apollo payload type to Ares, moving all associated files and updating documentation accordingly. The change includes:
- Renaming directories from `apollo` to `ares`
- Updating documentation image references
- Maintaining the same code functionality while changing the payload name
- Adding new Ares-specific documentation files
- Removing old Apollo documentation files

The rename is done to reflect the new payload name while preserving all existing functionality.
2026-04-14 14:02:44 +07:00

1000 B
Raw Blame History

+++ title = "reg_write_value" chapter = false weight = 103 hidden = false +++

{{% notice info %}} Artifacts Generated: Registry Write {{% /notice %}}

Summary

Write a new string or integer value to the specified Value Name that's within the specified Registry Key.

Arguments

Hive

The registry hive in which the Key lives. Must be one of:

  • HKLM
  • HKCU
  • HKU
  • HKCR
  • HKCC

Key

The registry key to write to. Default: \

Name (optional)

The name of the value to which you wish to write the new value to. Default will write to the (Default) value.

Value (optional)

The new value to store in the designated Name. If this is an integer, a DWORD will be written. Otherwise, this will be a string.

Usage

Set the value of OsLoaderPath from the HKLM:\SYSTEM\Setup registry key to \HardDisk4\.

reg_write_value -Hive HKLM -Key SYSTEM\\Setup -Name OsLoaderPath -Value \\HardDisk4\\

MITRE ATT&CK Mapping

  • T1547
  • T1037
  • T1546
  • T1574
  • T1112
  • T1003
Reference in New Issue View Git Blame Copy Permalink