Closed g1ng3rr00t closed 2 years ago
g1ng3rr00t
AGMService.exe / Adobe Genuine Monitor Service
AGMService.exe opens and reads from the LSASS process
I was unable to find much information about this issue specifically (although I did not contact Adobe at all) aside from this forum post from 2019 https://community.adobe.com/t5/acrobat-discussions/credential-theft-adobe-genuine-software-service-agmservice-exe/td-p/10745517, and it being excluded in Olaf Hartong's sysmon modular configuration repository (https://github.com/olafhartong/sysmon-modular/blob/master/sysmonconfig-excludes-only.xml).
Added in e8acedb.
mttaggart
commented
2 years ago mttaggart
commented
2 years ago
g1ng3rr00t
AGMService.exe / Adobe Genuine Monitor Service
AGMService.exe opens and reads from the LSASS process
I was unable to find much information about this issue specifically (although I did not contact Adobe at all) aside from this forum post from 2019 https://community.adobe.com/t5/acrobat-discussions/credential-theft-adobe-genuine-software-service-agmservice-exe/td-p/10745517, and it being excluded in Olaf Hartong's sysmon modular configuration repository (https://github.com/olafhartong/sysmon-modular/blob/master/sysmonconfig-excludes-only.xml).