Process Camouflage, Masquerading
Created the Monday 18 March 2019. Updated 3 years, 6 months ago.
Masquerading is a basic concept that consist to rename the malicious file by a legitimate file (e.g: svchost.exe) and copy to a legitimate folder. Masquerading occurs when the name or location of an executable, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. Several different variations of this technique have been observed.