S0695Windows

S0695Donut

Platforms
1
ATT&CK
14.1
References
4

Description

[Donut](https://attack.mitre.org/software/S0695) is an open source framework used to generate position-independent shellcode.(Citation: Donut Github)(Citation: Introducing Donut) [Donut](https://attack.mitre.org/software/S0695) generated code has been used by multiple threat actors to inject and load malicious payloads into memory.(Citation: NCC Group WastedLocker June 2020)

Platforms· 1

Windows

References

  1. https://attack.mitre.org/software/S0695
  2. https://research.nccgroup.com/2020/06/23/wastedlocker-a-new-ransomware-variant-developed-by-the-evil-corp-group/
  3. https://thewover.github.io/Introducing-Donut/
  4. https://github.com/TheWover/donut

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Doki
Software
Donutleaks
Software
EvilBunny
Software
DarkTortilla
Software
Mythic
Technique
Reflective Code Loading
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.