sandbox detect & evade
Jump to navigation Jump to search
|Description:||Detects whether the malware instance is being executed inside of an instrumented sandbox environment (e.g., Cuckoo Sandbox). If so, conditional execution selects for benign execution path.
|Associated Attributes:||Anti-Behavioral Analysis: targeted sandbox, Common: applicable platform, Common: technique|
|Associated Capabilities/Subcapabilities:|| Anti-Behavioral Analysis