
Technique List
Technique Name | Technique ID's | Categories | Has Snippet(s) | Has Rules(s) | Creation Date |
---|---|---|---|---|---|
PE Format Manipulation | U0514 | Antivirus/EDR Evasion | 4 years | ||
Evading Specific Signature | U0515 | Antivirus/EDR Evasion | 4 years | ||
Evading Hash Signature | U0516 | Antivirus/EDR Evasion | 4 years | ||
Connected Printer | U1309 B0009.017 | Sandbox Evasion | 4 years | ||
Detecting USB Drive | U1310 B0009.016 | Sandbox Evasion | 4 years | ||
Detecting Hostname, Username | U1311 | Sandbox Evasion | 4 years | ||
Checking Hard Drive Size | U1312 B0009.015 | Sandbox Evasion | 4 years | ||
Checking Memory Size | U1313 B0009.014 | Sandbox Evasion | 4 years | ||
Checking Installed Software | U1314 | Sandbox Evasion | 4 years | ||
Checking Screen Resolution | U1315 | Sandbox Evasion | 4 years | ||
Checking Recent Office Files | U1316 | Sandbox Evasion | 4 years | ||
Checking Mouse Activity | U1317 | Sandbox Evasion | 4 years | ||
Stalling Code | U1318 | Sandbox Evasion | 4 years | ||
Onset Delay | U1320 | Sandbox Evasion | 4 years | ||
VPCEXT | U1321 | Sandbox Evasion | 4 years | ||
VMCPUID | U1322 | Sandbox Evasion | 4 years | ||
IN | U1323 | Sandbox Evasion | 4 years | ||
CPUID | U1324 | Sandbox Evasion | 4 years | ||
STR | U1325 | Sandbox Evasion | 4 years | ||
SMSW | U1326 | Sandbox Evasion | 4 years | ||
SLDT, No Pill | U1327 | Sandbox Evasion | 4 years | ||
SIDT, Red Pill | U1328 | Sandbox Evasion | 4 years | ||
Checking Pipe | U1329 | Sandbox Evasion | 4 years | ||
Detecting Hooked Function | U1330 | Sandbox Evasion | 4 years | ||
Checking Specific Folder Name | U1331 | Sandbox Evasion | 4 years | ||
Detecting Virtual Environment Artefacts | U1332 | Sandbox Evasion | 4 years | ||
Detecting Virtual Environment Files | U1333 | Sandbox Evasion | 4 years | ||
Detecting Virtual Environment Process | U1334 | Sandbox Evasion | 4 years | ||
Detecting Mac Address | U1335 | Sandbox Evasion | 4 years | ||
Querying the I/O Communication Port | U1336 | Sandbox Evasion | 4 years |