
Technique List
Technique Name | Technique ID's | Categories | Has Snippet(s) | Has Rules(s) | Creation Date |
---|---|---|---|---|---|
ConfuserEx | U1417 | Packers | 9 months, 1 week | ||
NsPack | U1416 | Packers | 9 months, 1 week | ||
AsProtect | U1415 | Packers | 9 months, 1 week | ||
PECompact | U1414 | Packers | 9 months, 1 week | ||
Crinkler | U1413 | Packers | 9 months, 1 week | ||
PEtite | U1412 | Packers | 9 months, 1 week | ||
AsPack | U1411 F0001.013 | Packers | 9 months, 1 week | ||
VMProtect | U1410 F0001.010 | Packers | 9 months, 1 week | ||
Alienyze | U1409 | Packers | 9 months, 1 week | ||
FSG | U1408 | Packers | 9 months, 1 week | ||
MEW | U1407 | Packers | 9 months, 1 week | ||
Themida | U1406 F0001.011 | Packers | 9 months, 1 week | ||
ExeStealth | U1405 | Packers | 9 months, 1 week | ||
Alternate EXE Packer | U1404 | Packers | 9 months, 1 week | ||
MPRESS | U1403 | Packers | 9 months, 1 week | ||
UPX: Ultimate Packer for Executables | U1402 F0001.008 | Packers | 9 months, 1 week | ||
Unloading Sysmon Driver | U0407 | Anti-Monitoring | 9 months, 1 week | ||
Shellcode Injection via CreateThreadpoolWait | U1236 | Process Manipulating | 9 months, 1 week | ||
Thwarting Stack-Frame Analysis | U0219 | Anti-Disassembly | 9 months, 2 weeks | ||
Misusing Structured Exception Handlers | U0218 B0032.016 | Anti-Disassembly | 9 months, 2 weeks | ||
ProcEnvInjection - Remote code injection by abusing process environment strings | U1235 | Process Manipulating | 9 months, 2 weeks | ||
Disabling Event Tracing for Windows (ETW) | U0306 | Anti-Forensic | 11 months, 1 week | ||
Anti-UPX Unpacking | U1008 | Others | 12 months | ||
Volume Shadow Copy Service (VSC,VSS) Deletion | U0305 T1070.004 | Defense Evasion [Mitre], Anti-Forensic | 1 year, 1 month | ||
User Interaction (Are you human?) | U1339 | Sandbox Evasion | 1 year, 8 months | ||
Access Token Manipulation: Parent PID Spoofing | U1234 T1134.004 | Defense Evasion [Mitre], Process Manipulating | 1 year, 8 months | ||
Killing Windows Event Log | U0304 | Anti-Forensic | 1 year, 8 months | ||
Process Ghosting | U1232 | Process Manipulating | 1 year, 9 months | ||
Process Herpaderping | U1231 | Process Manipulating | 1 year, 9 months | ||
LocalSize(0) | U0128 | Anti-Debugging | 1 year, 11 months |