Technique List
| Technique Name | Technique ID's | Categories | Snippet(s) | Rules(s) | OS | Creation Date |
|---|---|---|---|---|---|---|
| Access Token Manipulation: Parent PID Spoofing | U1234 T1134.004 | Process Manipulating, Defense Evasion [Mitre] | 3 years, 4 months | |||
| Killing Windows Event Log | U0304 | Anti-Forensic | 3 years, 4 months | |||
| Process Ghosting | U1232 | Process Manipulating | 3 years, 6 months | |||
| Process Herpaderping | U1231 | Process Manipulating | 3 years, 6 months | |||
| LocalSize(0) | U0128 | Anti-Debugging | 3 years, 7 months | |||
| Detecting Online Sandbox | U1338 | Sandbox Evasion | 3 years, 9 months | |||
| File Melt | U1007 | Others | 3 years, 10 months | |||
| Execution Guardrails: Environmental Keying | T1480.001 | Defense Evasion [Mitre] | 4 years, 1 month | |||
| Indicator Removal: Timestomp | U0303 T1070.006 | Anti-Forensic, Defense Evasion [Mitre] | 4 years, 1 month | |||
| Debug Registers, Hardware Breakpoints | U0127 B0001.005 | Anti-Debugging | 4 years, 1 month | |||
| Anti Yara Rules | U1001 | Others | 4 years, 1 month | |||
| Breaking BaDDEr | U1201 | Process Manipulating | 4 years, 1 month | |||
| DNS API Injection | U1202 | Process Manipulating | 4 years, 1 month | |||
| CLIPBRDWNDCLASS | U1203 | Process Manipulating | 4 years, 2 months | |||
| WordWarping | U1204 | Process Manipulating | 4 years, 2 months | |||
| EditWordBreakProc | U1229 | Process Manipulating | 4 years, 2 months | |||
| OLEUM | U1206 | Process Manipulating | 4 years, 2 months | |||
| Listplanting | U1207 | Process Manipulating | 4 years, 2 months | |||
| Treepoline | U1208 | Process Manipulating | 4 years, 2 months | |||
| ConsoleWindowClass | U1209 | Process Manipulating | 4 years, 2 months | |||
| Bypass User Account Control | T1548.002 | Defense Evasion [Mitre] | 4 years, 2 months | |||
| GetForegroundWindow | U1301 | Sandbox Evasion | 4 years, 2 months | |||
| Thermal Zone Temperature | U1302 | Sandbox Evasion | 4 years, 2 months | |||
| Checking Malware Name | U1303 U0401 | Sandbox Evasion, Anti-Monitoring | 4 years, 2 months | |||
| RDTSCP | U1304 | Sandbox Evasion | 4 years, 3 months | |||
| API Hammering | U1305 B0003.012 | Sandbox Evasion | 4 years, 3 months | |||
| Process Reimaging | U1210 | Process Manipulating | 4 years, 7 months | |||
| Malvertising | U1002 | Others | 5 years, 7 months | |||
| C2 via Social Networks | U0901 | Network Evasion | 5 years, 7 months | |||
| Peer to peer C2 | U0902 | Network Evasion | 5 years, 7 months |