attack.t1564.003 | Detection.FYI

HackTool - Covenant PowerShell Launcher
Feb 21, 2023 · attack.execution attack.defense_evasion attack.t1059.001 attack.t1564.003 ·
Share on:
Detects suspicious command lines used in Covenant luanchers

Read More
Suspicious PowerShell WindowStyle Option
Jan 4, 2023 · attack.defense_evasion attack.t1564.003 ·
Share on:
Adversaries may use hidden windows to conceal malicious activity from the plain sight of users. In some cases, windows that would typically be displayed when an application carries out an operation can be hidden

Read More