Behaviors
List of software behaviors discovered with static code analysis.
Queries the passwd database entry for a given user ID. (x1)
steal
Listens on incoming network connections. (x2)
network
Contains URLs that link to interesting file formats. (x13)
network
Creates a process. (x11)
execution
Detects presence of debuggers. (x2)
evasion
Executes a WMI (Windows Management Instrumentation) query. (x1)
search
Receives data over the network. (x6)
network
Connects to a database. (x1)
network
Sends or exfiltrates data over the network. (x7)
network
Deletes a file/directory. (x10)
file