Skip to content

Hide Navigation Hide TOC

Potential CommandLine Obfuscation Using Unicode Characters From Suspicious Image (584bca0f-3608-4402-80fd-4075ff6072e3)

Detects potential commandline obfuscation using unicode characters. Adversaries may attempt to make an executable or file difficult to discover or analyze by encrypting, encoding, or otherwise obfuscating its contents on the system or in transit.

Cluster A Galaxy A Cluster B Galaxy B Level
Obfuscated Files or Information - T1027 (b3d682b6-98f2-4fb0-aa3b-b4df007ca70a) Attack Pattern Potential CommandLine Obfuscation Using Unicode Characters From Suspicious Image (584bca0f-3608-4402-80fd-4075ff6072e3) Sigma-Rules 1