Emerging Threats
Malware2021
Small Sieve
4Rules
2References
1Folders
2023-08-17Latest
Summary
Small Sieve is tracked here as a malware family or toolset with 4 Sigma detections spanning 2021. Coverage centers on proxy, windows / file_event, windows / process_creation +1.
Related Detections
Search this threatEmerging Threathightest
Small Sieve Malware Registry Persistence
Detects registry value with specific intentional typo and strings seen used by the Small Sieve malware
WindowsRegistry Set
TA0003 · Persistencedetection.emerging-threats
Nasreddine Bencherchali (Nextron Systems)Fri May 192021
Emerging Threathightest
Small Sieve Malware CommandLine Indicator
Detects specific command line argument being passed to a binary as seen being used by the malware Small Sieve.
WindowsProcess Creation
TA0004 · Privilege EscalationTA0005 · StealthTA0003 · PersistenceT1574.001 · DLL+1
Nasreddine Bencherchali (Nextron Systems)Fri May 192021
Emerging Threathightest
Small Sieve Malware File Indicator Creation
Detects filename indicators that contain a specific typo seen used by the Small Sieve malware.
WindowsFile Event
TA0005 · StealthT1036.005 · Match Legitimate Resource Name or Locationdetection.emerging-threats
Nasreddine Bencherchali (Nextron Systems)+1Fri May 192021
Emerging Threatcriticaltest
Small Sieve Malware Potential C2 Communication
Detects potential C2 communication related to Small Sieve malware
Proxy Log
TA0011 · Command and Controldetection.emerging-threats
Nasreddine Bencherchali (Nextron Systems)Fri May 192021
References