Technique List

Technique Name Technique ID's Categories Snippet(s) Rules(s) OS Creation Date
Bypass User Account Control T1548.002 Defense Evasion [Mitre] 5 years
GetForegroundWindow U1301 Sandbox Evasion 5 years, 1 month
Thermal Zone Temperature U1302 Sandbox Evasion 5 years, 1 month
Checking Malware Name U1303 U0401 Sandbox Evasion, Anti-Monitoring 5 years, 1 month
RDTSCP U1304 Sandbox Evasion 5 years, 1 month
API Hammering U1305 B0003.012 Sandbox Evasion 5 years, 1 month
Process Reimaging U1210 Process Manipulating 5 years, 5 months
Malvertising U1002 Others 6 years, 6 months
C2 via Social Networks U0901 Network Evasion 6 years, 6 months
Peer to peer C2 U0902 Network Evasion 6 years, 6 months
Tor Network C2 U0903 Network Evasion 6 years, 6 months
DNS Hijacking U0904 E1643.m01 Network Evasion 6 years, 6 months
DNS Tunneling U0905 T1048.003 Network Evasion, Defense Evasion [Mitre] 6 years, 6 months
Domain Generation Algorithm U0906 B0031 Network Evasion 6 years, 6 months
Fast Flux U0907 Network Evasion 6 years, 6 months
NTFS Files Attributes U0501 Antivirus/EDR Evasion 6 years, 7 months
Hiding Mechanisms U1003 Others 6 years, 7 months
Wiping or Encrypting U0301 Anti-Forensic 6 years, 7 months
Indicator Removal: Clear Windows Event Logs T1070.001 U0302 Anti-Forensic, Defense Evasion [Mitre] 6 years, 7 months
Kill Process U0403 Anti-Monitoring 6 years, 7 months
Opaque Predicate U0201 B0032.019 Anti-Disassembly 6 years, 7 months
Code Transposition U0202 Anti-Disassembly 6 years, 7 months
Register Reassignment U0203 Anti-Disassembly 6 years, 7 months
Inserting Garbage Bytes U0204 B0032.007 Anti-Disassembly 6 years, 7 months
Call Trick U0205 Anti-Disassembly 6 years, 7 months
NOP Sled U0206 Anti-Disassembly 6 years, 7 months
Inline Hooking U1211 F0015.002 Process Manipulating 6 years, 7 months
LOLbins U1004 Others 6 years, 7 months
COM Hijacking U1212 Process Manipulating 6 years, 7 months
Ctrl+Inject U1213 Process Manipulating 6 years, 7 months
Filter
Clear