Rootkits: evolution and detection methods
Common Information
| Type | Value |
|---|---|
| UUID | 0de45e52-0794-49a3-8880-ecd4d4f05f02 |
| Fingerprint | c104f185cf29f893b390755310663970e44c1008adbec9e0e95d7cdda40cff88 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 18, 2021, 3:37 p.m. |
| Added to db | May 19, 2024, 2:35 p.m. |
| Last updated | Aug. 31, 2024, 7:18 a.m. |
| Headline | Rootkits: evolution and detection methods |
| Title | Rootkits: evolution and detection methods |
| Detected Hints/Tags/Attributes | 177/4/11 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 38 | cve-2017-7269 |
|
| Details | Domain | 226 | ptsecurity.com |
|
| Details | Domain | 330 | facebook.com |
|
| Details | 132 | pt@ptsecurity.com |
||
| Details | File | 1122 | svchost.exe |
|
| Details | MITRE ATT&CK Techniques | 409 | T1566 |
|
| Details | MITRE ATT&CK Techniques | 55 | T1091 |
|
| Details | MITRE ATT&CK Techniques | 542 | T1190 |
|
| Details | MITRE ATT&CK Techniques | 183 | T1189 |
|
| Details | Threat Actor Identifier - APT | 115 | APT1 |
|
| Details | Threat Actor Identifier - APT | 783 | APT28 |