Common Information
| Type | Value |
|---|---|
| Value |
Non-Standard Encoding - T1132.002 |
| Category | Attack-Pattern |
| Type | Mitre-Attack-Pattern |
| Misp Type | Cluster |
| Description | Adversaries may encode data with a non-standard data encoding system to make the content of command and control traffic more difficult to detect. Command and control (C2) information can be encoded using a non-standard data encoding system that diverges from existing protocol specifications. Non-standard data encoding schemes may be based on or related to standard data encoding schemes, such as a modified Base64 encoding for the message body of an HTTP request.(Citation: Wikipedia Binary-to-text Encoding) (Citation: Wikipedia Character Encoding) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2021-01-21 | 43 | Vadokrist: A wolf in sheep’s clothing | WeLiveSecurity | ||
| Details | Website | 2020-08-17 | 30 | WellMess malware: analysis of its Command and Control (C2) server | ||
| Details | Website | 2020-07-16 | 131 | How WellMess malware has been used to target COVID-19 vaccines | ||
| Details | Website | 2017-05-24 | 38 | Analysis of Emotet v4 |