Clankerusecase
MITRE ATT&CK detection coverage
 ← Back to main site
Home/ MITRE Matrix/ Defense Evasion/ T1574.001

T1574.001DLL

T1574.001 — DLL is a MITRE ATT&CK technique in the Defense Evasion tactic. Clankerusecase tracks 19 detection use cases covering it and 2 threat-intel articles citing it.

Defense EvasionExecution
View on the matrix → Filter Detection Library MITRE official spec ↗
19Use cases
2Articles
0Sub-techniques
2Tactics
↑ Parent technique: T1574 · Hijack Execution Flow

Use cases covering this technique (19)

MSI Module Loaded by Non-System Binary ESCU actions · hunting P Msmpeng Application DLL Side Loading ESCU actions · alerting P Windows DLL Search Order Hijacking Hunt with Sysmon ESCU actions · hunting P Windows DLL Search Order Hijacking with iscsicpl ESCU actions · alerting P Windows DLL Side-Loading In Calc ESCU actions · alerting P Windows DLL Side-Loading Process Child Of Calc ESCU actions · hunting P Windows Hijack Execution Flow Version Dll Side Load ESCU actions · hunting P Windows Known Abused DLL Created ESCU actions · hunting P Windows Known Abused DLL Loaded Suspiciously ESCU actions · alerting P Windows Known GraphicalProton Loaded Modules ESCU actions · hunting P Windows Masquerading Explorer As Child Process ESCU actions · alerting P Windows Mustang Panda USB Tool Execution ESCU actions · alerting P Windows SqlWriter SQLDumper DLL Sideload ESCU actions · alerting P Windows Unsigned DLL Side-Loading ESCU actions · hunting P Windows Unsigned DLL Side-Loading In Same Process Path ESCU actions · alerting P Windows Unsigned MS DLL Side-Loading ESCU actions · hunting P Windows DLL Search Order Hijacking Hunt ESCU actions · hunting P [LLM] Argamal Loader Artifacts — natives2_blob.bin / Modified ffmpeg.dll IOC Sweep Bespoke install · hunting DSΣPDDCS [LLM] Lazarus DreamJob DLL side-load: wksprt.exe loading webservices.dll from ProgramData Bespoke install · alerting DSΣPDDCS

Articles citing this technique (2)

high Argamal: Malware hidden in hentai games art-137
crit Gotta fly: Lazarus targets the UAV sector art-734