Detection Rule List
| Rule Name | Rule Type | Technique Count | Creation Date |
|---|---|---|---|
| CAPA_mouse_cursor | CAPA | 1 | 11 months, 2 weeks |
| CAPA_stackstring_obf | CAPA | 0 | 11 months, 2 weeks |
| CAPA_detect_vm_process | CAPA | 2 | 11 months, 2 weeks |
| CAPA_device_pipe | CAPA | 0 | 11 months, 2 weeks |
| CAPA_timestomp | CAPA | 0 | 11 months, 2 weeks |
| CAPA_ntglobalflag | CAPA | 1 | 11 months, 2 weeks |
| CAPA_vm_artefact | CAPA | 1 | 11 months, 2 weeks |
| CAPA_kill_process | CAPA | 1 | 11 months, 2 weeks |
| CAPA_QueryPerformanceCounter | CAPA | 1 | 11 months, 2 weeks |
| CAPA_output_debug_string | CAPA | 1 | 11 months, 2 weeks |
| CAPA_clear_log | CAPA | 1 | 11 months, 2 weeks |
| CAPA_crash_eventlog | CAPA | 2 | 11 months, 2 weeks |
| CAPA_Delete_Volume_Shadow_Copy | CAPA | 1 | 11 months, 2 weeks |
| CAPA_debug_register | CAPA | 1 | 11 months, 2 weeks |
| CAPA_sandbox_name | CAPA | 1 | 11 months, 2 weeks |
| CAPA_resize_volume_shadow_copy_storage | CAPA | 0 | 11 months, 2 weeks |