Technique List

Technique Name Technique ID's Categories Has Snippet(s) Has Rules(s) Creation Date
QEMU CPU brand evasion U1350 Sandbox Evasion 1 week, 3 days
bochs CPU oversights evasion U1349 Sandbox Evasion 1 week, 6 days
Al-Khaser_WriteWatch U0134 Anti-Debugging 3 weeks, 3 days
WinDefAVEmu_goatfiles U1348 Sandbox Evasion 3 weeks, 3 days
IPV4/IPV6 Obfuscation U0710 Data Obfuscation 3 weeks, 3 days
AppInit DLL Injection U1244 T1546 Process Manipulating, Defense Evasion [Mitre] 3 weeks, 5 days
VboxEnumShares U1347 Sandbox Evasion 3 weeks, 5 days
Cronos-Crypter U1437 Packers 3 weeks, 5 days
Odd Thread Count U1346 Sandbox Evasion 3 weeks, 5 days
Hyper-V Signature U1345 Sandbox Evasion 3 weeks, 5 days
NtDelayExecution U1344 U0133 Sandbox Evasion, Anti-Debugging 3 weeks, 5 days
Runtime Function Decryption U0523 Antivirus/EDR Evasion 5 months, 3 weeks
BlockInput U1011 Others 5 months, 3 weeks
Retrieve HDD Information U1343 Sandbox Evasion 5 months, 3 weeks
BuildCommDCBAndTimeoutA U1342 T1497.002 Sandbox Evasion 5 months, 3 weeks
LimeCrypter U1436 Packers 7 months, 3 weeks
PyArmor U1435 Packers 7 months, 3 weeks
NixImports U1434 Packers 7 months, 4 weeks
PowerShell Special Characters Obfuscation U0709 Data Obfuscation 8 months
PureCrypter U1433 Packers 8 months
TrueCrypt U1432 Packers 8 months
EasyCrypter U1431 Packers 8 months, 1 week
FuncIn U0132 U0221 U0308 Antivirus/EDR Evasion, Anti-Debugging, Anti-Disassembly, Anti-Forensic 8 months, 4 weeks
Process Argument Spoofing U1243 Process Manipulating 9 months
SMB / Named Pipes U9011 Network Evasion 1 year
Right-to-Left Override (RLO) Extension Spoofing U1010 Others 1 year, 1 month
DLL Unhooking U0522 Antivirus/EDR Evasion 1 year, 2 months
Shikata Ga Nai (SGN) U0708 Data Obfuscation 1 year, 2 months
C2 via FTP(S) U0910 Network Evasion 1 year, 3 months
Evasion using direct Syscalls U0521 Antivirus/EDR Evasion 1 year, 3 months

Filter