クラス: Trojan-Clicker
Trojan-Clickerとして分類されたプログラムは、インターネットリソース(通常はWebページ)にアクセスするように設計されています。これはブラウザに適切なコマンドを送信するか、インターネットリソース(Windowsホストファイルなど)の「標準」アドレスを提供するシステムファイルを置き換えることによって行われます。悪意のあるユーザーは、トロイの木馬 - クリッカープログラムを使用して、オンライン広告のヒット数を増やすために特定のサイトへの訪問数を増加させる可能性があります。特定のサーバーに対するDoS(サービス拒否)攻撃を実行し、潜在的な犠牲者をウイルスやトロイの木馬。プラットフォーム: Win32
Win32は、32ビットアプリケーションの実行をサポートするWindows NTベースのオペレーティングシステム(Windows XP、Windows 7など)上のAPIです。世界で最も広く普及しているプログラミングプラットフォームの1つです。ファミリー: Trojan-Clicker.Win32.Delf
No family descriptionExamples
6153446D478D96336766C45AC221AFC882F10C2F281A0F2262403F8F10782A5A
48945E70C061E3FC45E66BC207232222
F67978874EA8028761D9251B19FC764A
834079FAA3C4B57AF8748E7216542839
Tactics and Techniques: Mitre*
TA0005
Defense Evasion
The adversary is trying to avoid being detected.
Defense Evasion consists of techniques that adversaries use to avoid detection throughout their compromise. Techniques used for defense evasion include uninstalling/disabling security software or obfuscating/encrypting data and scripts. Adversaries also leverage and abuse trusted processes to hide and masquerade their malware. Other tactics’ techniques are cross-listed here when those techniques include the added benefit of subverting defenses.
Defense Evasion consists of techniques that adversaries use to avoid detection throughout their compromise. Techniques used for defense evasion include uninstalling/disabling security software or obfuscating/encrypting data and scripts. Adversaries also leverage and abuse trusted processes to hide and masquerade their malware. Other tactics’ techniques are cross-listed here when those techniques include the added benefit of subverting defenses.
T1036
Masquerading
Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Renaming abusable system utilities to evade security monitoring is also a form of Masquerading.(Citation: LOLBAS Main Site) Masquerading may also include the use of Proxy or VPNs to disguise IP addresses, which can allow adversaries to blend in with normal network traffic and bypass conditional access policies or anti-abuse protections.
Renaming abusable system utilities to evade security monitoring is also a form of Masquerading.(Citation: LOLBAS Main Site) Masquerading may also include the use of Proxy or VPNs to disguise IP addresses, which can allow adversaries to blend in with normal network traffic and bypass conditional access policies or anti-abuse protections.
* © 2026 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.