Technique List

Technique Name Technique ID's Categories Has Snippet(s) Has Rules(s) Creation Date
AsPack U1411 Packers 5 months, 1 week
VMProtect U1410 Packers 5 months, 1 week
Alienyze U1409 Packers 5 months, 1 week
FSG U1408 Packers 5 months, 1 week
MEW U1407 Packers 5 months, 1 week
Themida U1406 Packers 5 months, 1 week
ExeStealth U1405 Packers 5 months, 1 week
Alternate EXE Packer U1404 Packers 5 months, 1 week
MPRESS U1403 Packers 5 months, 1 week
UPX: Ultimate Packer for Executables U1402 Packers 5 months, 1 week
Unloading Sysmon Driver U0407 Anti-Monitoring 5 months, 1 week
Shellcode Injection via CreateThreadpoolWait U1236 Process Manipulating 5 months, 1 week
Thwarting Stack-Frame Analysis U0219 Anti-Disassembly 5 months, 2 weeks
Misusing Structured Exception Handlers U0218 Anti-Disassembly 5 months, 2 weeks
ProcEnvInjection - Remote code injection by abusing process environment strings U1235 Process Manipulating 5 months, 2 weeks
Disabling Event Tracing for Windows (ETW) U0306 Anti-Forensic 7 months, 1 week
Anti-UPX Unpacking U1008 Others 8 months
Volume Shadow Copy Service (VSC,VSS) Deletion U0305 T1070.004 Anti-Forensic, Defense Evasion [Mitre] 9 months
User Interaction (Are you human?) U1339 Sandbox Evasion 1 year, 4 months
Parent PID Spoofing U1234 T1134.004 Process Manipulating, Defense Evasion [Mitre] 1 year, 4 months
Killing Windows Event Log U0304 Anti-Forensic 1 year, 4 months
Process Ghosting U1232 Process Manipulating 1 year, 5 months
Process Herpaderping U1231 Process Manipulating 1 year, 5 months
LocalSize(0) U0128 Anti-Debugging 1 year, 7 months
Detecting Online Sandbox U1338 Sandbox Evasion 1 year, 8 months
File Melt U1007 Others 1 year, 9 months
Execution Guardrails: Environmental Keying T1480.001 Defense Evasion [Mitre] 2 years
Timestomp U0303 T1070.006 Anti-Forensic, Defense Evasion [Mitre] 2 years
Debug Registers, Hardware Breakpoints U0127 Anti-Debugging 2 years
Anti Yara Rules U1001 Others 2 years

Filter