Behaviors
List of software behaviors discovered with static code analysis.
Retrieves the name of the user associated with the process. (x2)
search
Receives data from a connected TCP socket. (x3)
network
Sends data on a connected TCP socket. (x3)
network
Receives data from an open UDP socket. (x4)
network
Permits an incoming connection on a TCP socket. (x4)
network
Deletes files in Windows system directories. (x2)
file
Detects VMWare related virtualized environments. (x1)
evasion
Queries the passwd database entry for a given user name. (x1)
steal
Queries the passwd database entry for a given user ID. (x3)
steal
Changes the value of a registry key. (x1)
registry