ioc[.]one - OSINT Cyber Threat Intelligence Database

Dynamic Analysis of Windows Exploit Mitigations — Import Address Filtering.

Tags

attack-pattern:

Data

Show in Graph

Common Information

Type	Value
UUID	58615496-45f1-46aa-b7cd-3cc11dce5a2e
Fingerprint	8e10d612f835a45e
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 25, 2022, 1:25 p.m.
Added to db	Jan. 18, 2023, 10:44 p.m.
Last updated	Nov. 17, 2024, 6:55 p.m.
Headline	Dynamic Analysis of Windows Exploit Mitigations — Import Address Filtering.
Title	Dynamic Analysis of Windows Exploit Mitigations — Import Address Filtering.
Detected Hints/Tags/Attributes	30/1/9

Source URLs

	Redirection	Url
Details	Source	https://wambui-ngige.medium.com/dynamic-analysis-of-windows-exploit-mitigations-import-address-filtering-16fc28029529

URL Provider

Details	Provider	Source level domain
Details	medium.com	wambui-ngige.medium.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	13		ired.team
Details	Domain	291		raw.githubusercontent.com
Details	File	1		payloadrestrictions.dll
Details	File	312		calc.exe
Details	File	15		optionalheader.dat
Details	File	1		pe102.pdf
Details	Github username	3		corkami
Details	Url	1		https://www.ired.team/miscellaneous-reversing-forensics/windows-kernel-internals/pe-file-header-parser-in-c
Details	Url	1		https://raw.githubusercontent.com/corkami/pics/master/binary/pe102/pe102.pdf