[Intel]: https://sansec.io/research/nginrat #94
Assignees
Labels
missing:tag:Non-persistentStorage
missing:tag:T1005
missing:tag:T1048
missing:tag:T1053.003
missing:tag:T1057
missing:tag:T1071.001
missing:tag:T1083
missing:tag:T1205
missing:tag:T1491
missing:tag:T1546.004
missing:tag:T1548.003
missing:tag:T1567
missing:tag:T1573
missing:tag:T1574.006
missing:tag:T1574.007
missing:tag:T1590
Comments
timb-machine
added
missing:tag:Non-persistentStorage
missing:tag:T1005
missing:tag:T1048
missing:tag:T1053.003
missing:tag:T1057
missing:tag:T1071.001
missing:tag:T1083
missing:tag:T1491
missing:tag:T1546.004
missing:tag:T1548.003
missing:tag:T1567
missing:tag:T1573
missing:tag:T1574.006
missing:tag:T1574.007
missing:tag:T1590
and removed
confirmed
labels
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Area
Malware reports
Parent threat
Defense Evasion
Finding
https://sansec.io/research/nginrat
Industry reference
uses:Non-persistentStorage
attack:T1036.005:Match Legitimate Name or Location
attack:T1574.006:Dynamic Linker Hijacking
attack:T1027:Obfuscated Files or Information
uses:ProcessTreeSpoofing
Malware reference
NginRAT
wltm
Actor reference
No response
Component
No response
Scenario
No response
The text was updated successfully, but these errors were encountered: