Windows Keylogger Part 2: Defense against user-land
Tags
attack-pattern: Data Direct Hooking - T1617 Keylogging - T1056.001 Keylogging - T1417.001 Hooking - T1179 Hooking
Show in Graph
Common Information
Type Value
UUID e6ddf0ae-853d-4456-bcd0-d45859aa3959
Fingerprint a65ac97d950f7614
Analysis status DONE
Considered CTI value 0
Text language
Published June 27, 2017, 3:38 p.m.
Added to db Sept. 26, 2022, 9:31 a.m.
Last updated Nov. 17, 2024, 6:49 p.m.
Headline Windows Keylogger Part 2: Defense againstĀ user-land
Title Windows Keylogger Part 2: Defense against user-land
Detected Hints/Tags/Attributes 28/1/8
Source URLs
Redirection Url
Details Source https://eyeofrablog.wordpress.com/2017/06/27/windows-keylogger-part-2-defense-against-user-land/
URL Provider
Details Provider Source level domain
Details wordpress.com eyeofrablog.wordpress.com
Attributes
Details Type #Events CTI Value
Details File 125 
ntoskrnl.exe
Details File 115 
win32k.sys
Details File 1260 
explorer.exe
Details File 291 
user32.dll
Details File 5 
msiafterburner.exe
Details File 4 
dinput8.dll
Details md5 1 
2088D9994332583EDB3C561DE31EA5AD
Details md5 1 
687464342342B933D6B7FAA4A907AF4C