Hide Navigation Hide TOC

DLL Sideloading by VMware Xfer Utility (ebea773c-a8f1-42ad-a856-00cb221966e8)

Detects execution of VMware Xfer utility (VMwareXferlogs.exe) from the non-default directory which may be an attempt to sideload arbitrary DLL

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
DLL Side-Loading - T1574.002 (e64c62cf-9cd7-4a14-94ec-cdaac43ab44b)	Attack Pattern	DLL Sideloading by VMware Xfer Utility (ebea773c-a8f1-42ad-a856-00cb221966e8)	Sigma-Rules	1
DLL Side-Loading - T1574.002 (e64c62cf-9cd7-4a14-94ec-cdaac43ab44b)	Attack Pattern	Hijack Execution Flow - T1574 (aedfca76-3b30-4866-b2aa-0f1d7fd1e4b6)	Attack Pattern	2