Home/ MITRE Matrix/ Defense Evasion/ T1055.001

T1055.001Dynamic-link Library Injection

T1055.001 — Dynamic-link Library Injection is a MITRE ATT&CK technique in the Defense Evasion tactic. Clankerusecase tracks 5 detection use cases covering it and 1 threat-intel article citing it.

Defense EvasionPrivilege Escalation

View on the matrix → Filter Detection Library MITRE official spec ↗

5Use cases

1Articles

0Sub-techniques

2Tactics

↑ Parent technique: T1055 · Process Injection

Use cases covering this technique (5)

Loading Of Dynwrapx Module ESCU actions · alerting P PowerShell PInvoke Process Injection API Chain ESCU actions · alerting P Windows Process Injection Of Wermgr to Known Browser ESCU actions · alerting P Windows Rasautou DLL Execution ESCU actions · alerting P [LLM] FrostyNeighbor Cobalt Strike beacon ViberPC.dll image load Bespoke install · hunting DSΣPDDCS

Articles citing this technique (1)

crit FrostyNeighbor: Fresh mischief and digital shenanigans art-309