Technique List
Technique Name | Technique ID's | Categories | Snippet(s) | Rules(s) | OS | Creation Date |
---|---|---|---|---|---|---|
VBA Purging | U0524 | Antivirus/EDR Evasion | 3 weeks, 3 days | |||
QEMU CPU brand evasion | U1350 | Sandbox Evasion | 1 month, 1 week | |||
bochs CPU oversights evasion | U1349 | Sandbox Evasion | 1 month, 2 weeks | |||
Al-Khaser_WriteWatch | U0134 | Anti-Debugging | 1 month, 3 weeks | |||
WinDefAVEmu_goatfiles | U1348 | Sandbox Evasion | 1 month, 3 weeks | |||
IPV4/IPV6 Obfuscation | U0710 | Data Obfuscation | 1 month, 3 weeks | |||
AppInit DLL Injection | U1244 T1546 | Process Manipulating, Defense Evasion [Mitre] | 1 month, 3 weeks | |||
VboxEnumShares | U1347 | Sandbox Evasion | 1 month, 3 weeks | |||
Cronos-Crypter | U1437 | Packers | 1 month, 3 weeks | |||
Odd Thread Count | U1346 | Sandbox Evasion | 1 month, 3 weeks | |||
Hyper-V Signature | U1345 | Sandbox Evasion | 1 month, 3 weeks | |||
NtDelayExecution | U1344 U0133 | Sandbox Evasion, Anti-Debugging | 1 month, 3 weeks | |||
Runtime Function Decryption | U0523 | Antivirus/EDR Evasion | 6 months, 3 weeks | |||
BlockInput | U1011 | Others | 6 months, 3 weeks | |||
Retrieve HDD Information | U1343 | Sandbox Evasion | 6 months, 3 weeks | |||
BuildCommDCBAndTimeoutA | U1342 T1497.002 | Sandbox Evasion | 6 months, 3 weeks | |||
LimeCrypter | U1436 | Packers | 8 months, 3 weeks | |||
PyArmor | U1435 | Packers | 8 months, 3 weeks | |||
NixImports | U1434 | Packers | 9 months | |||
PowerShell Special Characters Obfuscation | U0709 | Data Obfuscation | 9 months | |||
PureCrypter | U1433 | Packers | 9 months | |||
TrueCrypt | U1432 | Packers | 9 months, 1 week | |||
EasyCrypter | U1431 | Packers | 9 months, 1 week | |||
FuncIn | U0132 U0221 U0308 | Antivirus/EDR Evasion, Anti-Debugging, Anti-Disassembly, Anti-Forensic | 10 months | |||
Process Argument Spoofing | U1243 | Process Manipulating | 10 months | |||
SMB / Named Pipes | U9011 | Network Evasion | 1 year, 1 month | |||
Right-to-Left Override (RLO) Extension Spoofing | U1010 | Others | 1 year, 2 months | |||
DLL Unhooking | U0522 | Antivirus/EDR Evasion | 1 year, 3 months | |||
Shikata Ga Nai (SGN) | U0708 | Data Obfuscation | 1 year, 3 months | |||
C2 via FTP(S) | U0910 | Network Evasion | 1 year, 4 months |