Exploit.T1055DefenseEvasion

detection icon

Short bio

Exploit.T1055DefenseEvasion is Malwarebytes’ detection name for defense evasion and obfuscation tactics by malicious actors.

Technique

Exploit.T1055DefenseEvasion monitors, detects, and blocks defense evasion and obfuscation tactics by malicious actors. T1055 is a reference to the Mitre Att&ck technique Process Injection. Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process. Basically the detection tells you that this exploit uses process injection (T1055) to avoid detection (Defense Evasion).

Protection

Malwarebytes protects your system(s) by detecting defense evasion and obfuscation tactics by malicious actors and displays the message T1055 – Defense Evasion

list of Exploit detections in Nebula
detection icon

Related blog content

Contributors icon

Contributors

Threat Center icon

Threat Center

Podcasts icon

Podcast

Glossary icon

Glossary

Scams icon

Scams