Borrowing Microsoft MetaData and Signatures to Hide Binary Payloads - Threatexpress
Tags
attack-pattern: Data Scheduled Task - T1053.005 Tool - T1588.002 Scheduled Task - T1053
Show in Graph
Common Information
Type Value
UUID e6447969-ed4a-45da-9b42-53aaaca5b498
Fingerprint 3305991434f7ded2
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 1, 2019, midnight
Added to db Sept. 26, 2022, 9:31 a.m.
Last updated Nov. 17, 2024, 6:49 p.m.
Headline Borrowing Microsoft MetaData and Signatures to Hide Binary Payloads¶
Title Borrowing Microsoft MetaData and Signatures to Hide Binary Payloads - Threatexpress
Detected Hints/Tags/Attributes 26/1/1
Source URLs
Redirection Url
Details Source https://threatexpress.com/blogs/2017/metatwin-borrowing-microsoft-metadata-and-digital-signatures-to-hide-binaries/
URL Provider
Details Provider Source level domain
Details threatexpress.com threatexpress.com
Attributes
Details Type #Events CTI Value
Details File 1260 
explorer.exe