Rule Info
Name
Suspicious Unsigned Thor Scanner Execution
Author
Nasreddine Bencherchali (Nextron Systems)
Description
Detects loading and execution of an unsigned thor scanner binary.
Reference
Internal Research
Date
2023-10-29 00:00:00
Modified
None
Id
ea5c131b-380d-49f9-aeb3-920694da4d4b
Tags
attack.defense-evasion attack.t1574.002 DEMO
Type
Community Rule
Link to Public Repo