Skip to content

Hide Navigation Hide TOC

Inline Python Execution - Spawn Shell Via OS System Library (2d2f44ff-4611-4778-a8fc-323a0e9850cc)

Detects execution of inline Python code via the "-c" in order to call the "system" function from the "os" library, and spawn a shell.

Cluster A Galaxy A Cluster B Galaxy B Level
Inline Python Execution - Spawn Shell Via OS System Library (2d2f44ff-4611-4778-a8fc-323a0e9850cc) Sigma-Rules Command and Scripting Interpreter - T1059 (7385dfaf-6886-4229-9ecd-6fd678040830) Attack Pattern 1