Technique List

Technique Name Technique ID's Categories Snippet(s) Rules(s) OS Creation Date
AxProtector U1420 Packers 2 years, 4 months
PELock U1419 Packers 2 years, 4 months
hXOR Packer U1418 Packers 2 years, 4 months
ConfuserEx U1417 Packers 2 years, 4 months
NsPack U1416 Packers 2 years, 4 months
AsProtect U1415 Packers 2 years, 4 months
PECompact U1414 Packers 2 years, 4 months
Crinkler U1413 Packers 2 years, 4 months
PEtite U1412 Packers 2 years, 4 months
AsPack U1411 F0001.013 Packers 2 years, 4 months
VMProtect U1410 F0001.010 Packers 2 years, 4 months
Alienyze U1409 Packers 2 years, 4 months
FSG U1408 Packers 2 years, 4 months
MEW U1407 Packers 2 years, 4 months
Themida U1406 F0001.011 Packers 2 years, 4 months
ExeStealth U1405 Packers 2 years, 4 months
Alternate EXE Packer U1404 Packers 2 years, 4 months
MPRESS U1403 Packers 2 years, 4 months
UPX: Ultimate Packer for Executables U1402 F0001.008 Packers 2 years, 4 months
Unloading Sysmon Driver U0407 Anti-Monitoring 2 years, 4 months
Shellcode Injection via CreateThreadpoolWait U1236 Process Manipulating 2 years, 4 months
Thwarting Stack-Frame Analysis U0219 Anti-Disassembly 2 years, 4 months
Misusing Structured Exception Handlers U0218 B0032.016 Anti-Disassembly 2 years, 4 months
ProcEnvInjection - Remote code injection by abusing process environment strings U1235 Process Manipulating 2 years, 4 months
Disabling Event Tracing for Windows (ETW) U0306 Anti-Forensic 2 years, 6 months
Anti-UPX Unpacking U1008 Others 2 years, 6 months
Volume Shadow Copy Service (VSC,VSS) Deletion U0305 T1070.004 Anti-Forensic, Defense Evasion [Mitre] 2 years, 7 months
User Interaction (Are you human?) U1339 E1204 Sandbox Evasion 3 years, 2 months
Access Token Manipulation: Parent PID Spoofing U1234 T1134.004 Process Manipulating, Defense Evasion [Mitre] 3 years, 2 months
Killing Windows Event Log U0304 Anti-Forensic 3 years, 2 months
Filter
Clear