← Back to Explore
T1559.002
Dynamic Data Exchange
Adversaries may use Windows Dynamic Data Exchange (DDE) to execute arbitrary commands. DDE is a client-server protocol for one-time and/or continuous inter-process communication (IPC) between applications. Once a link is established, applications can autonomously exchange transactions consisting of strings, warm data links (notifications when a data item changes), hot data links (duplications of changes to a data item), and requests for command execution. Object Linking and Embedding (OLE), or ...
Windows
1
Detections
1
Sources
11
Threat Actors
BY SOURCE
1sigma
PROCEDURES (1)
Registry Monitoring1 detections
Auto-extracted: 1 detections for registry monitoring