Detecttechnique
D3-FAFile Analysis
File Analysis
Definition
Defends against99
| Type | Target | Confidence | Tier |
|---|---|---|---|
| SubTechnique | Run Virtual Instancet1564.006 | 100% | live |
| SubTechnique | Credentials In Filest1552.001 | 100% | live |
| SubTechnique | VBA Stompingt1564.007 | 100% | live |
| Technique | Deobfuscate/Decode Files or Informationt1140 | 100% | live |
| SubTechnique | Dynamic-link Library Injectiont1055.001 | 100% | live |
| SubTechnique | Screensavert1546.002 | 100% | live |
| SubTechnique | Password Filter DLLt1556.002 | 100% | live |
| SubTechnique | Network Logon Scriptt1037.003 | 100% | live |
| SubTechnique | Launch Daemont1543.004 | 100% | live |
| SubTechnique | Outlook Formst1137.003 | 100% | live |
| SubTechnique | Spearphishing Attachmentt1566.001 | 100% | live |
| SubTechnique | Runtime Data Manipulationt1565.003 | 100% | live |
| SubTechnique | Local Data Stagingt1074.001 | 100% | live |
| SubTechnique | Clear Linux or Mac System Logst1070.002 | 100% | live |
| SubTechnique | Software Packingt1027.002 | 100% | live |
| Technique | Application Layer Protocolt1071 | 100% | live |
| SubTechnique | Web Protocolst1071.001 | 100% | live |
| Technique | Rootkitt1014 | 100% | live |
| SubTechnique | Portable Executable Injectiont1055.002 | 100% | live |
| SubTechnique | Archive via Utilityt1560.001 | 100% | live |
| Technique | Exfiltration Over C2 Channelt1041 | 100% | live |
| SubTechnique | Login Hookt1037.002 | 100% | live |
| Technique | XSL Script Processingt1220 | 100% | live |
| Technique | File and Directory Discoveryt1083 | 100% | live |
| SubTechnique | Systemd Servicet1543.002 | 100% | live |
| SubTechnique | /etc/passwd and /etc/shadowt1003.008 | 100% | live |
| SubTechnique | Trapt1546.005 | 100% | live |
| SubTechnique | AppInit DLLst1546.010 | 100% | live |
| SubTechnique | Stored Data Manipulationt1565.001 | 100% | live |
| SubTechnique | Path Interception by Search Order Hijackingt1574.008 | 100% | live |
Showing top 30 of 99 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.