Behaviors
List of software behaviors discovered with static code analysis.
Starts a PowerShell session and executes Base64-encoded commands. (x1)
execution
Requests permission to open other processes. (x1)
permissions
Modifies file/directory permissions. (x1)
permissions
Sends data on a connected TCP socket. (x1)
network
Receives data from a connected TCP socket. (x1)
network
Permits an incoming connection on a TCP socket. (x1)
network
Opens a socket listening for an incoming connection. (x2)
network
Uses a Python script interpreter. (x1)
execution
Queries the passwd database entry for a given user ID. (x1)
steal
Enumerates users that are connected on the system. (x7)
search