Isolatesubtechnique

D3-FMCVFile Metadata Consistency Validation

Definition

The process of validating the consistency between a file's metadata and its actual content, ensuring that elements like declared lengths, pointers, and checksums accurately describe the file's content.

Defends against99

TypeTargetConfidenceTier
SubTechniqueLocal Data Stagingt1074.001100%live
SubTechniqueWeb Protocolst1071.001100%live
SubTechniqueAccessibility Featurest1546.008100%live
TechniqueInternal Spearphishingt1534100%live
SubTechniqueDynamic Linker Hijackingt1574.006100%live
SubTechniquePowerShell Profilet1546.013100%live
SubTechniqueProc Filesystemt1003.007100%live
SubTechniquePortable Executable Injectiont1055.002100%live
SubTechniqueMshtat1218.005100%live
SubTechniqueKernel Modules and Extensionst1547.006100%live
SubTechniqueClear Linux or Mac System Logst1070.002100%live
SubTechniqueProc Memoryt1055.009100%live
SubTechniqueBypass User Account Controlt1548.002100%live
SubTechniqueBash Historyt1552.003100%live
SubTechniqueBinary Paddingt1027.001100%live
TechniqueDeobfuscate/Decode Files or Informationt1140100%live
SubTechniqueDylib Hijackingt1574.004100%live
SubTechniqueSystemd Servicet1543.002100%live
SubTechniqueAsymmetric Cryptographyt1573.002100%live
SubTechniqueRundll32t1218.011100%live
SubTechniqueEmondt1546.014100%live
TechniqueSoftware Deployment Toolst1072100%live
SubTechniqueArchive via Custom Methodt1560.003100%live
SubTechniqueArchive via Utilityt1560.001100%live
SubTechniqueArchive via Libraryt1560.002100%live
SubTechniqueLaunch Daemont1543.004100%live
SubTechniqueDLL Side-Loadingt1574.002100%live
SubTechniqueLC_LOAD_DYLIB Additiont1546.006100%live
SubTechniqueDynamic-link Library Injectiont1055.001100%live
TechniqueApplication Layer Protocolt1071100%live

Showing top 30 of 99 by confidence. Click any target to see the full neighbourhood.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Defence
File Metadata Value Verification
Defence
File Internal Structure Verification
Defence
File Format Verification
Defence
File Content Decompression Checking
Defence
File Magic Byte Verification
Defence
File Integrity Monitoring
Sourced from MITRE D3FEND ontology. Curated by Adam Lundqvist, SQUR.