Home > CAPEC List > CAPEC-552: Install Rootkit (Version 2.9)  

CAPEC-552: Install Rootkit

 
Install Rootkit
Definition in a New Window Definition in a New Window
Attack Pattern ID: 552
Abstraction: Detailed
Status: Draft
Completeness: Stub
Presentation Filter:
+ Summary

A hypervisor is a software layer that sits between the operating system and the processor. It presents a virtual running environment to the operating system. An example of a common hypervisor is Xen. Because a hypervisor operates at a level below the operating system it can hide its existence from the operating system.

+ Solutions and Mitigations

Prevent adversary access to privileged accounts necessary to install a hypervisor rootkit.

+ References
[R.552.1] ATT&CK Project. "Hypervisor Rootkit (1062)". MITRE. <https://attack.mitre.org/wiki/Hypervisor_rootkit>.
+ Content History
Submissions
SubmitterOrganizationDateSource
CAPEC Content TeamThe MITRE Corporation2015-11-09Internal_CAPEC_Team

More information is available — Please select a different filter.
Page Last Updated or Reviewed: December 07, 2015