Detecting Malicious Use of LOLBins, Pt. II | Huntress
Tags
attack-pattern: Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 2957f1b3-55e6-4c54-b8d7-4a60a0b2d5ba
Fingerprint 4418b9a8336bfaf
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 17, 2024, midnight
Added to db Oct. 17, 2024, 6:46 p.m.
Last updated Nov. 17, 2024, 6:55 p.m.
Headline Detecting Malicious Use of LOLBins, Pt. II
Title Detecting Malicious Use of LOLBins, Pt. II | Huntress
Detected Hints/Tags/Attributes 22/1/5
Source URLs
Redirection Url
Details Source https://www.huntress.com/blog/detecting-malicious-use-of-lolbins-pt-ii
URL Provider
Details Provider Source level domain
Details huntress.com www.huntress.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 318 Huntress Blog https://www.huntress.com/blog/rss.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 256 
net.exe
Details File 11 
finger.exe
Details File 93 
curl.exe
Details File 226 
certutil.exe
Details File 119 
sqlservr.exe