Technique List
Technique Name | Technique ID's | Categories | Has Snippet(s) | Has Rules(s) | Creation Date |
---|---|---|---|---|---|
NtGlobalFlag | U0111 B0001.036 | Anti-Debugging | 5 years, 1 month | ||
Heap Flag | U0112 B0001.021 | Anti-Debugging | 5 years, 1 month | ||
IsDebugged Flag | U0113 B0001.019 | Anti-Debugging | 5 years, 1 month | ||
CloseHandle, NtClose | U0114 B0001.003 | Anti-Debugging | 5 years, 1 month | ||
CsrGetProcessID | U0115 | Anti-Debugging | 5 years, 1 month | ||
EventPairHandles | U0116 | Anti-Debugging | 5 years, 1 month | ||
OutputDebugString | U0117 B0001.016 | Anti-Debugging | 5 years, 1 month | ||
NtQueryObject | U0118 B0001.013 | Anti-Debugging | 5 years, 1 month | ||
NtSetInformationThread | U0119 B0001.014 | Anti-Debugging | 5 years, 1 month | ||
NtQueryInformationProcess | U0120 B0001.012 | Anti-Debugging | 5 years, 1 month | ||
CheckRemoteDebuggerPresent | U0121 B0001.002 | Anti-Debugging | 5 years, 1 month | ||
IsDebuggerPresent | U0122 B0001.008 | Anti-Debugging | 5 years, 1 month | ||
Fake Signature | U0506 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Adding antivirus exception | U0507 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Disabling Antivirus | U0508 F0004 | Antivirus/EDR Evasion | 5 years, 1 month | ||
File Splitting | U0509 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Bypassing Static Heuristic | U0510 | Antivirus/EDR Evasion | 5 years, 1 month | ||
File Format Confusion | U0511 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Big File | U0512 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Fingerprinting Emulator | U0513 | Antivirus/EDR Evasion | 5 years, 1 month | ||
PE Format Manipulation | U0514 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Evading Specific Signature | U0515 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Evading Hash Signature | U0516 | Antivirus/EDR Evasion | 5 years, 1 month | ||
Connected Printer | U1309 B0009.017 | Sandbox Evasion | 5 years, 1 month | ||
Detecting USB Drive | U1310 B0009.016 | Sandbox Evasion | 5 years, 1 month | ||
Detecting Hostname, Username | U1311 | Sandbox Evasion | 5 years, 1 month | ||
Checking Hard Drive Size | U1312 B0009.015 | Sandbox Evasion | 5 years, 1 month | ||
Checking Memory Size | U1313 B0009.014 | Sandbox Evasion | 5 years, 1 month | ||
Checking Installed Software | U1314 | Sandbox Evasion | 5 years, 1 month | ||
Checking Screen Resolution | U1315 B0007.006 | Sandbox Evasion | 5 years, 1 month |