Hexacorn | Blog Enter Sandbox – part 15: rE[mn]u[mn]eration games
Tags
| cmtmf-attack-pattern: | Code Injection |
| attack-pattern: | Data Code Injection - T1540 Malware - T1587.001 Malware - T1588.001 |
Common Information
| Type | Value |
|---|---|
| UUID | f65cddc9-aa71-4e10-9dfa-51b12fdd3b0b |
| Fingerprint | 2170dd27a94907d7 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 24, 2017, midnight |
| Added to db | Jan. 19, 2023, 12:12 a.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | UNKNOWN |
| Title | Hexacorn | Blog Enter Sandbox – part 15: rE[mn]u[mn]eration games |
| Detected Hints/Tags/Attributes | 16/2/10 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 119 | smss.exe |
|
| Details | File | 165 | csrss.exe |
|
| Details | File | 212 | winlogon.exe |
|
| Details | File | 306 | services.exe |
|
| Details | File | 478 | lsass.exe |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 131 | spoolsv.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 26 | vmacthlp.exe |
|
| Details | File | 9 | persfw.exe |