Technique List

Technique Name Technique ID's Categories Has Snippet(s) Has Rules(s) Creation Date
LimeCrypter U1436 Packers 1 month, 1 week
PyArmor U1435 Packers 1 month, 1 week
NixImports U1434 Packers 1 month, 2 weeks
PowerShell Special Characters Obfuscation U0709 Data Obfuscation 1 month, 2 weeks
PureCrypter U1433 Packers 1 month, 2 weeks
TrueCrypt U1432 Packers 1 month, 3 weeks
EasyCrypter U1431 Packers 1 month, 3 weeks
FuncIn U0132 U0221 U0308 Antivirus/EDR Evasion, Anti-Forensic, Anti-Disassembly, Anti-Debugging 2 months, 2 weeks
Process Argument Spoofing U1243 Process Manipulating 2 months, 2 weeks
SMB / Named Pipes U9011 Network Evasion 6 months
Right-to-Left Override (RLO) Extension Spoofing U1010 Others 6 months, 4 weeks
DLL Unhooking U0522 Antivirus/EDR Evasion 7 months, 4 weeks
Shikata Ga Nai (SGN) U0708 Data Obfuscation 7 months, 4 weeks
C2 via FTP(S) U0910 Network Evasion 8 months, 2 weeks
Evasion using direct Syscalls U0521 Antivirus/EDR Evasion 9 months, 2 weeks
Hell's Gate U0520 Antivirus/EDR Evasion 11 months
XSL Script Processing T1220 Defense Evasion [Mitre] 11 months, 1 week
Virtualization/Sandbox Evasion: Time Based Evasion T1497.003 Defense Evasion [Mitre] 11 months, 1 week
Virtualization/Sandbox Evasion: User Activity Based Checks T1497.002 Defense Evasion [Mitre] 11 months, 1 week
Virtualization/Sandbox Evasion: System Checks T1497.001 Defense Evasion [Mitre] 11 months, 1 week
Valid Accounts: Local Accounts T1078.003 Defense Evasion [Mitre] 11 months, 1 week
Valid Accounts: Domain Accounts T1078.002 Defense Evasion [Mitre] 11 months, 1 week
Valid Accounts: Default Accounts T1078.001 Defense Evasion [Mitre] 11 months, 1 week
ScrubCrypt U1430 Packers 11 months, 2 weeks
Constant Blinding U0707 Data Obfuscation 11 months, 2 weeks
Unloading Module with FreeLibrary U0519 Antivirus/EDR Evasion 11 months, 2 weeks
AddVectoredExceptionHandler U0125 Anti-Debugging 11 months, 3 weeks
Call to Interrupt Procedure U0124 Anti-Debugging 11 months, 3 weeks
Use Alternate Authentication Material: Pass the Ticket T1550.003 Defense Evasion [Mitre] 11 months, 3 weeks
Use Alternate Authentication Material: Pass the Hash T1550.002 Defense Evasion [Mitre] 11 months, 3 weeks

Filter