| ID | C0063 |
| Objective(s) | File System |
| Related ATT&CK Techniques | None |
| Version | 2.0 |
| Created | 30 August 2021 |
| Last Modified | 13 September 2023 |
| Name | Date | Method | Description |
|---|---|---|---|
| Gamut | 2014 | -- | Gamut moves files. [1] |
| Hupigon | 2013 | -- | Hupigon moves files. [1] |
| Kovter | 2016 | -- | Kovter moves files. [1] |
| Mebromi | 2011 | -- | Mebromi moves files. [1] |
| Shamoon | 2012 | -- | Shamoon moves files. [1] |
| UP007 | 2016 | -- | UP007 moves files. [1] |
| Tool: capa | Mapping | APIs |
|---|---|---|
| move file | Move File (C0063) | kernel32.MoveFile, kernel32.MoveFileEx, MoveFileWithProgress, MoveFileTransacted, rename, _wrename, System.IO.FileInfo::MoveTo, System.IO.File::Move, kernel32.SHFileOperation |
[1] capa v4.0, analyzed at MITRE on 10/12/2022