Behaviors
List of software behaviors discovered with static code analysis.
Sends or exfiltrates data over the network. (x200)
network
Contains URLs that use suspicious top-level domains. (x1)
network
Receives data over the network. (x200)
network
Enumerates system information. (x200)
search
Deletes a file/directory. (x100)
file
Modifies file/directory attributes. (x100)
file
Invokes system calls. (x100)
execution
Queries the real user ID of a process. (x100)
search
Queries the effective user ID of a process. (x100)
search
Enumerates operating system version. (x100)
search