Technique List
| Technique Name | Technique ID's | Categories | Snippet(s) | Rules(s) | OS | Creation Date |
|---|---|---|---|---|---|---|
| Thermal Zone Temperature | U1302 | Sandbox Evasion | 4 years, 5 months | |||
| Checking Malware Name | U1303 U0401 | Sandbox Evasion, Anti-Monitoring | 4 years, 5 months | |||
| RDTSCP | U1304 | Sandbox Evasion | 4 years, 6 months | |||
| API Hammering | U1305 B0003.012 | Sandbox Evasion | 4 years, 6 months | |||
| Process Reimaging | U1210 | Process Manipulating | 4 years, 10 months | |||
| Malvertising | U1002 | Others | 5 years, 10 months | |||
| C2 via Social Networks | U0901 | Network Evasion | 5 years, 10 months | |||
| Peer to peer C2 | U0902 | Network Evasion | 5 years, 10 months | |||
| Tor Network C2 | U0903 | Network Evasion | 5 years, 10 months | |||
| DNS Hijacking | U0904 E1643.m01 | Network Evasion | 5 years, 10 months | |||
| DNS Tunneling | U0905 T1048.003 | Network Evasion, Defense Evasion [Mitre] | 5 years, 10 months | |||
| Domain Generation Algorithm | U0906 B0031 | Network Evasion | 5 years, 10 months | |||
| Fast Flux | U0907 | Network Evasion | 5 years, 10 months | |||
| NTFS Files Attributes | U0501 | Antivirus/EDR Evasion | 5 years, 11 months | |||
| Hiding Mechanisms | U1003 | Others | 5 years, 11 months | |||
| Wiping or Encrypting | U0301 | Anti-Forensic | 5 years, 11 months | |||
| Indicator Removal: Clear Windows Event Logs | T1070.001 U0302 | Anti-Forensic, Defense Evasion [Mitre] | 5 years, 11 months | |||
| Kill Process | U0403 | Anti-Monitoring | 5 years, 11 months | |||
| Opaque Predicate | U0201 B0032.019 | Anti-Disassembly | 5 years, 11 months | |||
| Code Transposition | U0202 | Anti-Disassembly | 5 years, 11 months | |||
| Register Reassignment | U0203 | Anti-Disassembly | 5 years, 11 months | |||
| Inserting Garbage Bytes | U0204 B0032.007 | Anti-Disassembly | 5 years, 11 months | |||
| Call Trick | U0205 | Anti-Disassembly | 5 years, 11 months | |||
| NOP Sled | U0206 | Anti-Disassembly | 5 years, 11 months | |||
| Inline Hooking | U1211 F0015.002 | Process Manipulating | 5 years, 11 months | |||
| LOLbins | U1004 | Others | 5 years, 11 months | |||
| COM Hijacking | U1212 | Process Manipulating | 5 years, 11 months | |||
| Ctrl+Inject | U1213 | Process Manipulating | 5 years, 11 months | |||
| Propagate | U1214 | Process Manipulating | 5 years, 11 months | |||
| Process Doppelgänging | U1215 | Process Manipulating | 5 years, 11 months |