Detailedlikelihood: Mediumseverity: HighStable

CAPEC-448Embed Virus into DLL

Abstraction
Detailed
Status
Stable
Likelihood
Medium
Severity
High

Description

An adversary tampers with a DLL and embeds a computer virus into gaps between legitimate machine instructions. These gaps may be the result of compiler optimizations that pad memory blocks for performance gains. The embedded virus then attempts to infect any machine which interfaces with the product, and possibly steal private data or eavesdrop.

Related weaknesses· 1

CWE-506

MITRE ATT&CK crosswalk· 1

T1027.009: Obfuscated Files or Information: Embedded Payloads

Related attack patterns· 1

CAPEC-442 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessEmbedded Malicious Codecwe-506100%live

Related to1

TypeTargetConfidenceTier
SubTechniqueEmbedded Payloadst1027.009100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Inclusion of Code in Existing Process
CAPEC
Infected Software
CAPEC
Infected Memory
CAPEC
Open-Source Library Manipulation
CAPEC
Malicious Logic Insertion
CAPEC
Code Injection
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.