DET0644 Detection of Software Packing

Technique Detected: T1406.002 (Software Packing)

Analytics

iOS

AN1721

Application vetting services could look for known software packers or artifacts of packing techniques. Packing is not a definitive indicator of malicious activity, because as legitimate software may use packing techniques to reduce binary size or to protect proprietary code.

Log Sources

Mutable Elements

Android

AN1722

Application vetting services could look for known software packers or artifacts of packing techniques. Packing is not a definitive indicator of malicious activity, because as legitimate software may use packing techniques to reduce binary size or to protect proprietary code.

Log Sources

Mutable Elements