Isolatesubtechnique
D3-FFVFile Format Verification
Definition
Verifying that a file conforms to its expected format specifications
Defends against100
| Type | Target | Confidence | Tier |
|---|---|---|---|
| SubTechnique | Rename System Utilitiest1036.003 | 100% | live |
| SubTechnique | Hidden Userst1564.002 | 100% | live |
| SubTechnique | Credentials In Filest1552.001 | 100% | live |
| SubTechnique | Component Object Model Hijackingt1546.015 | 100% | live |
| SubTechnique | Spearphishing via Servicet1566.003 | 100% | live |
| SubTechnique | AppCert DLLst1546.009 | 100% | live |
| SubTechnique | MSBuildt1127.001 | 100% | live |
| SubTechnique | Thread Execution Hijackingt1055.003 | 100% | live |
| SubTechnique | Proc Memoryt1055.009 | 100% | live |
| SubTechnique | Kernel Modules and Extensionst1547.006 | 100% | live |
| SubTechnique | DLL Search Order Hijackingt1574.001 | 100% | live |
| SubTechnique | Network Logon Scriptt1037.003 | 100% | live |
| SubTechnique | Stored Data Manipulationt1565.001 | 100% | live |
| SubTechnique | Space after Filenamet1036.006 | 100% | live |
| SubTechnique | Impair Command History Loggingt1562.003 | 100% | live |
| SubTechnique | Login Hookt1037.002 | 100% | live |
| SubTechnique | Spearphishing Attachmentt1566.001 | 100% | live |
| Technique | Exfiltration Over C2 Channelt1041 | 100% | live |
| SubTechnique | Sudo and Sudo Cachingt1548.003 | 100% | live |
| SubTechnique | Local Data Stagingt1074.001 | 100% | live |
| SubTechnique | Screensavert1546.002 | 100% | live |
| SubTechnique | RC Scriptst1037.004 | 100% | live |
| SubTechnique | File Deletiont1070.004 | 100% | live |
| SubTechnique | Archive via Utilityt1560.001 | 100% | live |
| SubTechnique | Asymmetric Cryptographyt1573.002 | 100% | live |
| Technique | Application Layer Protocolt1071 | 100% | live |
| SubTechnique | Registry Run Keys / Startup Foldert1547.001 | 100% | live |
| SubTechnique | Launch Agentt1543.001 | 100% | live |
| SubTechnique | Launchdt1053.004 | 100% | live |
| SubTechnique | Dylib Hijackingt1574.004 | 100% | live |
Showing top 30 of 100 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.