Technique List
Technique Name | Technique ID's | Categories | Snippet(s) | Rules(s) | OS | Creation Date |
---|---|---|---|---|---|---|
Bypassing Static Heuristic | U0510 | Antivirus/EDR Evasion | 5 years, 8 months | |||
File Format Confusion | U0511 | Antivirus/EDR Evasion | 5 years, 8 months | |||
Big File | U0512 | Antivirus/EDR Evasion | 5 years, 8 months | |||
Fingerprinting Emulator | U0513 | Antivirus/EDR Evasion | 5 years, 8 months | |||
PE Format Manipulation | U0514 | Antivirus/EDR Evasion | 5 years, 8 months | |||
Evading Specific Signature | U0515 | Antivirus/EDR Evasion | 5 years, 8 months | |||
Evading Hash Signature | U0516 | Antivirus/EDR Evasion | 5 years, 8 months | |||
Connected Printer | U1309 B0009.017 | Sandbox Evasion | 5 years, 8 months | |||
Detecting USB Drive | U1310 B0009.016 | Sandbox Evasion | 5 years, 8 months | |||
Detecting Hostname, Username | U1311 | Sandbox Evasion | 5 years, 8 months | |||
Checking Hard Drive Size | U1312 B0009.015 | Sandbox Evasion | 5 years, 8 months | |||
Checking Memory Size | U1313 B0009.014 | Sandbox Evasion | 5 years, 8 months | |||
Checking Installed Software | U1314 | Sandbox Evasion | 5 years, 8 months | |||
Checking Screen Resolution | U1315 B0007.006 | Sandbox Evasion | 5 years, 8 months | |||
Checking Recent Office Files | U1316 B0007.003 | Sandbox Evasion | 5 years, 8 months | |||
Checking Mouse Activity | U1317 B0007.003 | Sandbox Evasion | 5 years, 8 months | |||
Stalling Code | U1318 B0003.003 | Sandbox Evasion | 5 years, 8 months | |||
Onset Delay | U1320 | Sandbox Evasion | 5 years, 8 months | |||
VPCEXT | U1321 B0009.038 | Sandbox Evasion | 5 years, 8 months | |||
VMCPUID | U1322 B0009.037 | Sandbox Evasion | 5 years, 8 months | |||
IN | U1323 B0009.035 | Sandbox Evasion | 5 years, 8 months | |||
CPUID | U1324 B0009.034 | Sandbox Evasion | 5 years, 8 months | |||
STR | U1325 B0009.033 | Sandbox Evasion | 5 years, 8 months | |||
SMSW | U1326 B0009.032 | Sandbox Evasion | 5 years, 8 months | |||
SLDT, No Pill | U1327 B0009.031 | Sandbox Evasion | 5 years, 8 months | |||
SIDT, Red Pill | U1328 B0009.030 | Sandbox Evasion | 5 years, 8 months | |||
Checking Pipe | U1329 | Sandbox Evasion | 5 years, 8 months | |||
Detecting Hooked Function | U1330 | Sandbox Evasion | 5 years, 8 months | |||
Checking Specific Folder Name | U1331 | Sandbox Evasion | 5 years, 8 months | |||
Detecting Virtual Environment Artefacts | U1332 | Sandbox Evasion | 5 years, 8 months |