References

Type
Url
Description

technique

https://www.endgame.com/blog/technical-blog/ten-process-injection-techniques-technical-survey-common

Hosseini, A. (2017, July 18). Ten Process Injection Techniques: A Technical Survey Of Common And Trending Process Injection Techniques. Retrieved December 7, 2017.


technique

https://www.malwaretech.com/2013/08/powerloader-injection-something-truly.html

MalwareTech. (2013, August 13). PowerLoader Injection – Something truly amazing. Retrieved December 16, 2017.


technique

https://msdn.microsoft.com/library/windows/desktop/ms633584.aspx

Microsoft. (n.d.). GetWindowLong function. Retrieved December 16, 2017.


technique

https://msdn.microsoft.com/library/windows/desktop/ms644953.aspx

Microsoft. (n.d.). SendNotifyMessage function. Retrieved December 16, 2017.


technique

https://msdn.microsoft.com/library/windows/desktop/ms633591.aspx

Microsoft. (n.d.). SetWindowLong function. Retrieved December 16, 2017.


technique

https://msdn.microsoft.com/library/windows/desktop/ms633574.aspx

Microsoft. (n.d.). About Window Classes. Retrieved December 16, 2017.


technique

https://www.welivesecurity.com/2013/03/19/gapz-and-redyms-droppers-based-on-power-loader-code/

Matrosov, A. (2013, March 19). Gapz and Redyms droppers based on Power Loader code. Retrieved December 16, 2017.


technique

https://attack.mitre.org/techniques/T1055/011


technique

https://docs.microsoft.com/en-us/windows/security/threat-protection/auditing/audit-other-object-acce

Microsoft. (2017, May 28). Audit Other Object Access Events. Retrieved June 27, 2019.


technique

https://technet.microsoft.com/en-us/sysinternals/bb963902

Russinovich, M. (2016, January 4). Autoruns for Windows v13.51. Retrieved June 6, 2016.