TECHNIQUES
- Home
- Techniques
- PRE-ATT&CK
- Test malware in various execution environments
Test malware in various execution environments
ID: T1357
Sub-techniques:
No sub-techniques
Tactic:
Test Capabilities
Version: 1.0
Created: 14 December 2017
Last Modified: 17 October 2018
Detection
Detectable by Common Defenses (Yes/No/Partial): No
Explanation: Adversary controls the test and defender likely has no visibility.
Difficulty for the Adversary
Easy for the Adversary (Yes/No): Yes
Explanation: Adversary can simulate most environments (e.g., variable operating systems, patch levels, application versions) with details available from other techniques.
References
- Morton Christiansen. (2010, May 7). Bypassing Malware Defenses. Retrieved March 9, 2017.
×