open-menu
closeme
C# IL Code Compilation Via Ilasm.EXE
calendar
Apr 26, 2024
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
JScript Compiler Execution
calendar
Apr 26, 2024
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Potential Binary Proxy Execution Via Cdb.EXE
calendar
Apr 26, 2024
·
attack.execution
attack.t1106
attack.defense_evasion
attack.t1218
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Potential Arbitrary Code Execution Via Node.EXE
calendar
Dec 1, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Suspicious Child Process of AspNetCompiler
calendar
Oct 18, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Kavremover Dropped Binary LOLBIN Usage
calendar
Oct 17, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Node Process Executions
calendar
Oct 17, 2023
·
attack.defense_evasion
attack.t1127
attack.t1059.007
·
Share on:
twitter
facebook
linkedin
copy
Remote Thread Creation Ttdinject.exe Proxy
calendar
Oct 17, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Use of Remote.exe
calendar
Oct 17, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Use of TTDInject.exe
calendar
Oct 17, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Use of VSIISExeLauncher.exe
calendar
Oct 17, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Use of Wfc.exe
calendar
Oct 17, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Potentially Suspicious ASP.NET Compilation Via AspNetCompiler
calendar
Aug 18, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
AspNetCompiler Execution
calendar
Aug 14, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Potential Mftrace.EXE Abuse
calendar
Aug 3, 2023
·
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Detection of PowerShell Execution via Sqlps.exe
calendar
Mar 5, 2023
·
attack.execution
attack.t1059.001
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
SQL Client Tools PowerShell Session Detection
calendar
Mar 5, 2023
·
attack.execution
attack.t1059.001
attack.defense_evasion
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Suspicious Use of CSharp Interactive Console
calendar
Mar 5, 2023
·
attack.execution
attack.t1127
·
Share on:
twitter
facebook
linkedin
copy
Microsoft Workflow Compiler Execution
calendar
Feb 3, 2023
·
attack.defense_evasion
attack.execution
attack.t1127
attack.t1218
·
Share on:
twitter
facebook
linkedin
copy
to-top