INVISIMOLE: THE HIDDEN PART OF THE STORY
Common Information
| Type | Value |
|---|---|
| UUID | 403da9fd-cd7d-4940-88f5-c500d89e32bd |
| Fingerprint | efbc2ab8e6467f4414c7a55f5fe1cf10484aedf354f5e8eb943fe4cf87d26eea |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | June 15, 2020, 11:26 a.m. |
| Added to db | March 10, 2024, 7:12 a.m. |
| Last updated | Aug. 31, 2024, 3:31 a.m. |
| Headline | INVISIMOLE: THE HIDDEN PART OF THE STORY |
| Title | INVISIMOLE: THE HIDDEN PART OF THE STORY |
| Detected Hints/Tags/Attributes | 276/4/335 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 197 | cve-2019-0708 |
|
| Details | CVE | 126 | cve-2017-0144 |
|
| Details | CVE | 6 | cve-2007-5633 |
|
| Details | Domain | 1 | ngen.cab |
|
| Details | Domain | 1 | 153.re |
|
| Details | Domain | 1 | a8y3g5f2h2aaybyfplr4xcbaaaaaaaaaaaaaahoraaaaaaaaaaaaaaaagiacaa.aaaaaaaaaaaae.153.re |
|
| Details | Domain | 5 | time.windows.com |
|
| Details | Domain | 7 | crl.microsoft.com |
|
| Details | Domain | 12 | download.windowsupdate.com |
|
| Details | Domain | 1 | cdn.globalsign.com |
|
| Details | Domain | 1 | daemon.tools |
|
| Details | Domain | 372 | wscript.shell |
|
| Details | Domain | 285 | microsoft.net |
|
| Details | Domain | 4 | modexp.wordpress.com |
|
| Details | Domain | 15 | www.hexacorn.com |
|
| Details | Domain | 1 | adstat.red |
|
| Details | Domain | 1 | adtrax.net |
|
| Details | Domain | 1 | akamai.sytes.net |
|
| Details | Domain | 1 | amz-eu401.com |
|
| Details | Domain | 1 | blabla234342.sytes.net |
|
| Details | Domain | 1 | mx1.be |
|
| Details | Domain | 1 | statad.de |
|
| Details | Domain | 1 | time.servehttp.com |
|
| Details | Domain | 1 | upd.re |
|
| Details | Domain | 1 | update.xn--6frz82g |
|
| Details | Domain | 1 | update.移动 |
|
| Details | Domain | 1 | updatecloud.sytes.net |
|
| Details | Domain | 1 | updchecking.sytes.net |
|
| Details | Domain | 1 | wlsts.net |
|
| Details | Domain | 80 | www.eset.com |
|
| Details | File | 2 | control.js |
|
| Details | File | 1 | sminit.exe |
|
| Details | File | 1 | mscorscvs.exe |
|
| Details | File | 10 | ngen.exe |
|
| Details | File | 1 | ngen.cab |
|
| Details | File | 5 | speedfan.sys |
|
| Details | File | 1 | setupsnk.exe |
|
| Details | File | 10 | wdigest.dll |
|
| Details | File | 74 | procmon.exe |
|
| Details | File | 71 | wireshark.exe |
|
| Details | File | 30 | dumpcap.exe |
|
| Details | File | 1 | bdfwfpf.sys |
|
| Details | File | 66 | settings.xml |
|
| Details | File | 1 | ig_settings.xml |
|
| Details | File | 6 | qhsafetray.exe |
|
| Details | File | 41 | avastsvc.exe |
|
| Details | File | 42 | bdagent.exe |
|
| Details | File | 1 | intel_log64.exe |
|
| Details | File | 1 | pulsar_loader.dll |
|
| Details | File | 1 | webcomponents.exe |
|
| Details | File | 4 | aida64.exe |
|
| Details | File | 1 | poweriso6-full.exe |
|
| Details | File | 1 | samsunguniversalprintdriver3.exe |
|
| Details | File | 4 | 0407.exe |
|
| Details | File | 1 | adberdr11000_ru_ru.exe |
|
| Details | File | 1 | ultravnc_1_2_24_x86_setup.exe |
|
| Details | File | 1 | 7-zip.exe |
|
| Details | File | 1 | lanscope_setup.exe |
|
| Details | File | 1 | ultravnc_1_2_24_x64_setup.exe |
|
| Details | File | 1 | epson373260eu.exe |
|
| Details | File | 55 | putty.exe |
|
| Details | File | 1 | winsetupfromusb-1-6.exe |
|
| Details | File | 1 | bdusbimmunizerlauncher.exe |
|
| Details | File | 1 | dmmultiview.exe |
|
| Details | File | 1 | %appdata%\control\control.js |
|
| Details | File | 1 | imageapplet.dat |
|
| Details | File | 55 | control.exe |
|
| Details | File | 1 | hskin.dll |
|
| Details | File | 1 | tvpskin.dll |
|
| Details | File | 18 | settings.ini |
|
| Details | File | 1018 | rundll32.exe |
|
| Details | File | 185 | shell32.dll |
|
| Details | File | 1 | c:\windows\system32\mscorscvs.exe |
|
| Details | File | 1 | c:\windows\system32\drivers\ngen framework\ngen.exe |
|
| Details | File | 12 | associatedirp.sys |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 1 | %windir%\syswow64\drivers\rundll32.exe |
|
| Details | File | 1 | %windir%\syswow64\drivers\wdigest.dll |
|
| Details | File | 1 | %windir%\syswow64\wbem\setupsnk.exe |
|
| Details | File | 1 | %appdata%\microsoft\installer\kb043921.exe |
|
| Details | File | 1 | kb043921.exe |
|
| Details | File | 62 | fodhelper.exe |
|
| Details | File | 18 | compmgmtlauncher.exe |
|
| Details | File | 1 | c:\smrtntky\messageb.txt |
|
| Details | File | 1 | wzcdlg.dll |
|
| Details | File | 1 | c:\windows\syswow64\drivers\rundll32.exe |
|
| Details | File | 1 | c:\windows\syswow64\drivers\wdigest.dll |
|
| Details | File | 1 | fxscompose.dll |
|
| Details | File | 1 | stg0d0ce03.dll |
|
| Details | File | 1 | stg0d33e0a.dll |
|
| Details | File | 1 | %appdata%\microsoft\addins\imageapplet.dat |
|
| Details | File | 1 | %userprofile%\appdata\roaming\microsoft\sessions\hskin.dll |
|
| Details | File | 1 | %userprofile%\appdata\roaming\microsoft\sessions\settings.ini |
|
| Details | File | 1 | %userprofile%\appdata\roaming\microsoft\sessions\sminit.exe |
|
| Details | File | 1 | %userprofile%\appdata\roaming\microsoft\sessions\tvpskin.dll |
|
| Details | File | 1 | c:\windows\system32\drivers\ngen framework\ngen.cab |
|
| Details | File | 1 | nlsmodels0019.dll |
|
| Details | File | 1 | nlsmodels0022.dll |
|
| Details | File | 1 | osppc.dll |
|
| Details | File | 1 | osppcext.dll |
|
| Details | File | 4 | wptsextensions.dll |
|
| Details | File | 1 | %appdata%\microsoft\windows\iconcache.db |
|
| Details | File | 1 | alcrmv.exe |
|
| Details | File | 1 | %temp%\vsfilter_%random%.dll |
|
| Details | File | 32 | %systemroot%\system32\svchost.exe |
|
| Details | File | 1 | %systemroot%\system32\fxscompose.dll |
|
| Details | File | 3 | lame.dll |
|
| Details | File | 63 | ctfmon.exe |
|
| Details | File | 55 | dwm.exe |
|
| Details | File | 32 | sihost.exe |
|
| Details | File | 62 | taskhost.exe |
|
| Details | sha1 | 1 | 27fc1dcb1b3dca3e496f799a2944e4fb070af39c |
|
| Details | sha1 | 1 | 857eeb37db2b666981779005dd5e55cea7a53233 |
|
| Details | sha1 | 1 | 303a63ce12ad42900da257428e2fd4de4f9829dc |
|
| Details | sha1 | 1 | 4b8e11e0734d3109627ff8871ef7db14c0de9c41 |
|
| Details | sha1 | 1 | 4a6dc6a32a777dc5dd47221bf79604bc0258a987 |
|
| Details | sha1 | 1 | 6f98b12c98da1fcff078256970e9b8ef12139640 |
|
| Details | sha1 | 1 | 76fc2e29524c6ad58b0af05251c419bb942cced0 |
|
| Details | sha1 | 1 | 02f4242f7ca7289c8edfa7b4f465c62c7a6815e2 |
|
| Details | sha1 | 1 | 00ea86aab3d616a24a5e13d592fabc26416dfdbd |
|
| Details | sha1 | 1 | 125fca6ebd82682e51364cf93c9ffa8eb4f6ca5f |
|
| Details | sha1 | 1 | 3b923fa1e5dcb4f65daa138beceb123d7c431d1b |
|
| Details | sha1 | 1 | 3bb2c05dea077835a79499a0bb81410d27eebfaf |
|
| Details | sha1 | 1 | 4c13ad9ad9c134de15f3ae5e2f0d2ec1e290dee8 |
|
| Details | sha1 | 1 | 728386c6d6eaf43148fe25f86e6af248019d9842 |
|
| Details | sha1 | 1 | 793f4dd2b765ecd962a053246646ed0d6144d249 |
|
| Details | sha1 | 1 | 8147e85e13b3624fa290f1f218647a0d1fd70204 |
|
| Details | sha1 | 1 | 8c5f463fa79601de38d0a77808226b1a8e67459a |
|
| Details | sha1 | 1 | 9b1e0a22deb124ff36fcf7ed2ea82e799b49b070 |
|
| Details | sha1 | 1 | 9b48090704c3f62d6b768780845e2d04862f5219 |
|
| Details | sha1 | 1 | cd3419b4b3958be5be1caea60a4ee98e4d427a6d |
|
| Details | sha1 | 1 | d5d3a01a5944d55e5ddf1f915e88043691be6f58 |
|
| Details | sha1 | 1 | d8eb2429253e82729f34373068ec350d1b2da8ab |
|
| Details | sha1 | 1 | ddb871ad5823be31f5176f2b0ce149d4b6e44f24 |
|
| Details | sha1 | 1 | e936e857a812690178ed049fd4a1766e281b9f1d |
|
| Details | sha1 | 1 | 2402765ea67e04f151d32bf2b749b150bbd3993e |
|
| Details | sha1 | 1 | 9f64fec50d4447175459aab33bc9126f9a3370d8 |
|
| Details | sha1 | 1 | a3aff8ce55907daa1f3360ded01bcf3f6f9d0cf2 |
|
| Details | sha1 | 1 | 2161a471b598ea002fc2a1cc4b65dbb8da14a88e |
|
| Details | sha1 | 1 | 355f026d6f8c43956b8d326026038bf809f7350d |
|
| Details | sha1 | 1 | 9091be6630ad170d15ca6a6722ce53619ac61229 |
|
| Details | sha1 | 1 | e85d7f0564771c9396fdcdb9877db0ff61c1d515 |
|
| Details | sha1 | 1 | dbd21ef03ccc3a985d808b0c5ec7ac54ded5d1c9 |
|
| Details | sha1 | 1 | 2e7f737caeb56716ace36fadeb74ee610705283f |
|
| Details | sha1 | 1 | 9987c0b97cb6a0239d3af6e5a70b552e1c38810f |
|
| Details | sha1 | 1 | 10c548992567a04da199d09e3ca4b0c47b7a136c |
|
| Details | sha1 | 1 | b988f107e5f20cdc424ec9f470d157435fc03966 |
|
| Details | sha1 | 1 | 40d02ddb8be27726135c4a0e20e2bbabda84d0ff |
|
| Details | sha1 | 1 | 5d69782fff60365fe81c58d5887c151d326cf731 |
|
| Details | sha1 | 1 | 7ae0ca52f4690ca09558a94d4ce5b521b3a3e3ff |
|
| Details | sha1 | 1 | b7fee003b413af3297db60d0fc845a054fe080d2 |
|
| Details | sha1 | 1 | 094daea5b97c510a8e9cfe3585b39b78522a2c61 |
|
| Details | sha1 | 1 | f67300541d769c5aa071c766198f0b7e25476b23 |
|
| Details | sha1 | 1 | c0e73e522d09344a278d45a524a50cf4fcc87817 |
|
| Details | sha1 | 1 | d0a769119f628ff0d5110a1e17864036fcb8be6b |
|
| Details | sha1 | 1 | 065deb443aae29700d09cb395c928c919c3a7352 |
|
| Details | sha1 | 1 | 6aa50bae4d9529a60fe566115068e6bdf418786d |
|
| Details | sha1 | 1 | 5126a83a9d9b29598b36540647ffba2834c82ae3 |
|
| Details | sha1 | 1 | 371971130ee56ab5b7fea61a80054f5e81e4027d |
|
| Details | sha1 | 1 | 3e49b3dd812aae4997c4c9ff2843eaac32f55a94 |
|
| Details | sha1 | 1 | 12ebd779d5bb416d05550d9ecbadf5a9ef89436c |
|
| Details | sha1 | 1 | 80d48821135d904caf2df0fe2883a6f104be1639 |
|
| Details | sha1 | 1 | f4a60039d7c9fc337ae2f59d09f6f6f3d1ff7de3 |
|
| Details | sha1 | 1 | 2f13f5dd481fb251991e0cc05db9c06a4c1d6ed8 |
|
| Details | sha1 | 1 | 798af02ca0c8f92b1623a1f1cf25da4916c04a74 |
|
| Details | sha1 | 1 | 6ecf2532a8e3ab1888088a503d4a7ca57a7baa82 |
|
| Details | sha1 | 1 | 0197d794fa28b189b3b938fb384cc94e5f1d1733 |
|
| Details | sha1 | 1 | 60197b570d2acf93a6f92b548d08a3caf80a1579 |
|
| Details | sha1 | 1 | f4f06c73a4d8091ce0c7229555921f58e735849d |
|
| Details | sha1 | 1 | a203a7eef726473911031578adbf17cb83fe214b |
|
| Details | sha1 | 1 | c5de2bf0e13e741508a7eb4c67ded301aba391ce |
|
| Details | sha1 | 1 | b61a277719359582071db4cd448d3e9d0a460b1d |
|
| Details | sha1 | 1 | 7752bd1c02e5dc7b0975fc6a1c73145a2a83d079 |
|
| Details | sha1 | 1 | ee7d06fc93d3c608b48823d1444148327330015a |
|
| Details | sha1 | 1 | b894f320569286b56f4272d0cbba4db10c645ae0 |
|
| Details | sha1 | 1 | aa5e8e21c79b0b4a02726233b9f5eb4994c87ad3 |
|
| Details | sha1 | 1 | d8b101b588da6da3cbe3e161c91986e64d6dd290 |
|
| Details | sha1 | 1 | 0aab85ddd4e25add24e9ecd83c8dd635b3a7c2f3 |
|
| Details | sha1 | 1 | e9af42c4cf0299eea7b405f9e3e925bcafab9f2b |
|
| Details | sha1 | 1 | 09821eb9f2b79501b3928fba2f313c723febb1b3 |
|
| Details | sha1 | 1 | 16e9b0adbd53849e7f3a04fa8a5bf78e73a86841 |
|
| Details | sha1 | 1 | 21f320debdd4d97fa5420af31a55fbc77b923819 |
|
| Details | sha1 | 1 | 240c8157e5e053b70c4d301d852c609c212f85f3 |
|
| Details | sha1 | 1 | 32a9ff262649623cbff4c6b29bd8ed7f803e75e3 |
|
| Details | sha1 | 1 | 3ef0d0278db40f6116645b0b915d56374eb77004 |
|
| Details | sha1 | 1 | 42086128f7213931d438bf127cc61d3f9483014a |
|
| Details | sha1 | 1 | 4bbed6e307d214cab9ae395e1f49104446b54d5a |
|
| Details | sha1 | 1 | 55f6185ad64997756adf03bc2d4cc4abf5c64e4e |
|
| Details | sha1 | 1 | 652991303b319f5de440c18a0f14df65b82265fb |
|
| Details | sha1 | 1 | 66f9ea8017cd899ab146ded2e341201b51a9ce9f |
|
| Details | sha1 | 1 | 6a6d956a8108e0d5339751927d5576369c0e2c34 |
|
| Details | sha1 | 1 | 6c49bf35116a147c7f3c5ce15aba041f272e60b5 |
|
| Details | sha1 | 1 | 6decbfca132364cbd66dd07118959bce95f83168 |
|
| Details | sha1 | 1 | 6def96407f52b3c82d665b2c6a9b230b3d080cd1 |
|
| Details | sha1 | 1 | 7901ad25a3673ac9cb1b6ae1fc9dc57a4b53383e |
|
| Details | sha1 | 1 | 7ba31b83b2adf7a9b43c56f4882d217512f333af |
|
| Details | sha1 | 1 | 82d653d71dc024c19894c2b2207d6c3414ca1b01 |
|
| Details | sha1 | 1 | 96d5e7c32ac299770e11df521f867538361d9a8b |
|
| Details | sha1 | 1 | a27bb3e5f1cf56c89e5f9816cf8c5796d2fbb09e |
|
| Details | sha1 | 1 | a419f091723a5632da85b0930f3b260599672c00 |
|
| Details | sha1 | 1 | a527b41d60028be24be8cac69de9445401f280cd |
|
| Details | sha1 | 1 | a695fa12f97971a065fed927a30278c94c78c722 |
|
| Details | sha1 | 1 | b1b3e88494f7c27354e68d83e16eb65bbefc7fb3 |
|
| Details | sha1 | 1 | b7712bbe5de4386bab11f61f1731c358648dece6 |
|
| Details | sha1 | 1 | bfef295d375a60a2eefe416709de73f14ac1416c |
|
| Details | sha1 | 1 | cc595aae9573beef92de12c3de9c85f7e9e1cd6d |
|
| Details | sha1 | 1 | dbea8daf48cc54c7cfb0dcc689d4c9549d3dd23f |
|
| Details | sha1 | 1 | de6d8b66be01934d672c04e92ea2edc0210bf00e |
|
| Details | sha1 | 1 | e0b9c24dd5620ff70cb80002a4a772e16eb331f2 |
|
| Details | sha1 | 1 | e489c4d6ca1dafa034f7fadbf27deeb202189833 |
|
| Details | sha1 | 1 | f7ef9a3501eebcffa4615cc3bd473f65a203a1d6 |
|
| Details | sha1 | 1 | fb4401dea8911beab788e87a576ef5568da82ed5 |
|
| Details | sha1 | 1 | e1599fb73dde78531bbf65063f10f239aef29d70 |
|
| Details | sha1 | 1 | e3bf27f1303bfdb877d1699d5b480342a9a2fe58 |
|
| Details | sha1 | 1 | 7fe30ca69e6631cb9333c37f72e3cabbe8ce366c |
|
| Details | sha1 | 1 | 0b57cd2393e29084d545300d1749aa50eb23a8ab |
|
| Details | sha1 | 1 | 11eba9e198c458a8d86d70bd64b3fdb0163a38c4 |
|
| Details | sha1 | 1 | 20ff1a290a53b39c4e54a670e8c27852be8bcff4 |
|
| Details | sha1 | 1 | 554aa9a39cc241aad5fbdc5fd39ceccb1eb9e7d0 |
|
| Details | sha1 | 1 | 7114b2e031d8853434028d39873338c33ce67c16 |
|
| Details | sha1 | 1 | a1fffb96415cf4146b056c9a847dc6eecd882dbb |
|
| Details | sha1 | 1 | af67f640f33d1a46719056b66f45b91b2d56910a |
|
| Details | sha1 | 1 | ffb74af734453973fed6663c16fb001d563faf1c |
|
| Details | sha1 | 1 | 31fae273942a1e432de91400f5d625f88101b966 |
|
| Details | sha1 | 1 | 5f09df19232e0a77495eedb1b715d9ef0b909634 |
|
| Details | sha1 | 1 | f8caa729c28ef6b0ec8aa74399ce4ee7a59b895c |
|
| Details | sha1 | 1 | 66b7db6e755ec648aee210f163655a5662562dee |
|
| Details | sha1 | 1 | 7e8b99968c59fde046df3ececed6049e4dfa7225 |
|
| Details | sha1 | 1 | 81bd3140f222fac2dc6610e0ce79edf34b599d47 |
|
| Details | sha1 | 1 | 9a3e870b61c4f37514f6e3e3fab4d4506d3b50db |
|
| Details | sha1 | 1 | a42fa8fb11da669124ac7968838427bf8e998872 |
|
| Details | IPv4 | 1 | 80.255.3.66 |
|
| Details | IPv4 | 1 | 46.165.220.228 |
|
| Details | IPv4 | 1 | 85.17.26.174 |
|
| Details | IPv4 | 1 | 185.193.38.55 |
|
| Details | IPv4 | 1 | 194.187.249.157 |
|
| Details | IPv4 | 1 | 195.154.255.211 |
|
| Details | MITRE ATT&CK Techniques | 2 | T1196 |
|
| Details | MITRE ATT&CK Techniques | 239 | T1106 |
|
| Details | MITRE ATT&CK Techniques | 120 | T1129 |
|
| Details | MITRE ATT&CK Techniques | 245 | T1203 |
|
| Details | MITRE ATT&CK Techniques | 27 | T1085 |
|
| Details | MITRE ATT&CK Techniques | 480 | T1053 |
|
| Details | MITRE ATT&CK Techniques | 80 | T1064 |
|
| Details | MITRE ATT&CK Techniques | 39 | T1035 |
|
| Details | MITRE ATT&CK Techniques | 420 | T1204 |
|
| Details | MITRE ATT&CK Techniques | 36 | T1050 |
|
| Details | MITRE ATT&CK Techniques | 279 | T1060 |
|
| Details | MITRE ATT&CK Techniques | 5 | T1023 |
|
| Details | MITRE ATT&CK Techniques | 29 | T1088 |
|
| Details | MITRE ATT&CK Techniques | 208 | T1068 |
|
| Details | MITRE ATT&CK Techniques | 504 | T1140 |
|
| Details | MITRE ATT&CK Techniques | 48 | T1480 |
|
| Details | MITRE ATT&CK Techniques | 8 | T1143 |
|
| Details | MITRE ATT&CK Techniques | 3 | T1066 |
|
| Details | MITRE ATT&CK Techniques | 60 | T1202 |
|
| Details | MITRE ATT&CK Techniques | 627 | T1027 |
|
| Details | MITRE ATT&CK Techniques | 440 | T1055 |
|
| Details | MITRE ATT&CK Techniques | 10 | T1108 |
|
| Details | MITRE ATT&CK Techniques | 24 | T1063 |
|
| Details | MITRE ATT&CK Techniques | 12 | T1099 |
|
| Details | MITRE ATT&CK Techniques | 348 | T1036 |
|
| Details | MITRE ATT&CK Techniques | 168 | T1046 |
|
| Details | MITRE ATT&CK Techniques | 185 | T1518 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 86 | T1124 |
|
| Details | MITRE ATT&CK Techniques | 109 | T1210 |
|
| Details | MITRE ATT&CK Techniques | 33 | T1080 |
|
| Details | MITRE ATT&CK Techniques | 60 | T1043 |
|
| Details | MITRE ATT&CK Techniques | 152 | T1090 |
|
| Details | MITRE ATT&CK Techniques | 22 | T1024 |
|
| Details | MITRE ATT&CK Techniques | 96 | T1132 |
|
| Details | MITRE ATT&CK Techniques | 41 | T1008 |
|
| Details | MITRE ATT&CK Techniques | 492 | T1105 |
|
| Details | MITRE ATT&CK Techniques | 444 | T1071 |
|
| Details | MITRE ATT&CK Techniques | 159 | T1095 |
|
| Details | MITRE ATT&CK Techniques | 26 | T1065 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 116 | T1134 |
|
| Details | MITRE ATT&CK Techniques | 41 | T1089 |
|
| Details | MITRE ATT&CK Techniques | 67 | T1107 |
|
| Details | MITRE ATT&CK Techniques | 550 | T1112 |
|
| Details | MITRE ATT&CK Techniques | 238 | T1497 |
|
| Details | MITRE ATT&CK Techniques | 179 | T1087 |
|
| Details | MITRE ATT&CK Techniques | 75 | T1010 |
|
| Details | MITRE ATT&CK Techniques | 585 | T1083 |
|
| Details | MITRE ATT&CK Techniques | 433 | T1057 |
|
| Details | MITRE ATT&CK Techniques | 501 | T1012 |
|
| Details | MITRE ATT&CK Techniques | 245 | T1016 |
|
| Details | MITRE ATT&CK Techniques | 100 | T1007 |
|
| Details | MITRE ATT&CK Techniques | 23 | T1123 |
|
| Details | MITRE ATT&CK Techniques | 534 | T1005 |
|
| Details | MITRE ATT&CK Techniques | 67 | T1074 |
|
| Details | MITRE ATT&CK Techniques | 219 | T1113 |
|
| Details | MITRE ATT&CK Techniques | 32 | T1125 |
|
| Details | MITRE ATT&CK Techniques | 24 | T1002 |
|
| Details | MITRE ATT&CK Techniques | 28 | T1022 |
|
| Details | MITRE ATT&CK Techniques | 422 | T1041 |
|
| Details | MITRE ATT&CK Techniques | 176 | T1135 |
|
| Details | MITRE ATT&CK Techniques | 34 | T1025 |
|
| Details | MITRE ATT&CK Techniques | 152 | T1056 |
|
| Details | Url | 1 | https://modexp.wordpress.com/2019/04/25/seven-window-injection-methods/#listplanting |
|
| Details | Url | 1 | http://www.hexacorn.com/blog/2019/04/25 |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\EventSystem\AutoEx |
|
| Details | Windows Registry Key | 3 | HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__ |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Windows\CurrentVersion\Control |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Feeds\SyncData |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Feeds\SyncImage |
|
| Details | Windows Registry Key | 36 | HKCU\Software |
|
| Details | Windows Registry Key | 11 | HKLM\SOFTWARE\Microsoft |
|
| Details | Windows Registry Key | 1 | HKLM\SOFTWARE\WOW6432Node |
|
| Details | Windows Registry Key | 1 | HKLM\SOFTWARE\ODBC |
|
| Details | Windows Registry Key | 1 | HKLM\SOFTWARE\WOW6432Node\ODBC |
|
| Details | Windows Registry Key | 1 | HKCU\SOFTWARE\Classes\.zeros\shell\open\command |
|
| Details | Windows Registry Key | 1 | HKCU\SOFTWARE\Classes\ms-settings\Curver |
|
| Details | Windows Registry Key | 2 | HKCU\SOFTWARE\Classes |
|
| Details | Windows Registry Key | 1 | HKLM\SOFTWARE\WOW6432Node\Microsoft\FlashConfig |
|
| Details | Windows Registry Key | 1 | HKLM\SYSTEM\ControlSet001\services\clr_optimization_v2.0.51527_X86 |
|
| Details | Windows Registry Key | 1 | HKLM\SYSTEM\ControlSet001\services\clr_optimization_v2.0.51527_X86\Parameters |
|
| Details | Windows Registry Key | 1 | HKLM\software\microsoft\drm |
|
| Details | Windows Registry Key | 1 | HKLM\software\microsoft\windows\currentversion |
|
| Details | Windows Registry Key | 1 | HKLM\software\microsoft\windows\currentversion\ext |
|
| Details | Windows Registry Key | 1 | HKLM\software\microsoft |
|
| Details | Windows Registry Key | 1 | HKCU\SOFTWARE\Classes\lnkfile |
|
| Details | Windows Registry Key | 1 | HKCU\SOFTWARE\Classes\ms-settings |
|
| Details | Windows Registry Key | 1 | HKCU\SOFTWARE\Classes\.zeros\shell\open |
|
| Details | Windows Registry Key | 1 | HKLM\SOFTWARE\Microsoft\FlashConfig |
|
| Details | Windows Registry Key | 1 | HKLM\SYSTEM\CurrentControlSet\Services\CsPower |
|
| Details | Windows Registry Key | 1 | HKLM\SYSTEM\CurrentControlSet\Services\CsPower\Parameters |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\EventSystem |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\IE\Cache |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\IE |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\IE\Thumbnails |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Direct3D |
|
| Details | Windows Registry Key | 49 | HKLM\Software\Microsoft\Windows |