Alternative names (2)
TTPsInclude • usedTTPsRandom triples
| Subject | Object |
|---|---|
| gptkb:APT41 | web server exploitation |
| gptkb:MuddyWater_group | use of compromised email accounts |
| gptkb:APT41 | lateral movement |
| gptkb:Turla_Group | use of custom backdoors |
| gptkb:MuddyWater_group | multi-stage attacks |
| gptkb:MuddyWater_group | credential harvesting |
| gptkb:APT60 | spear phishing |
| gptkb:APT41 | SQL injection |
| gptkb:APT20 | privilege escalation |
| gptkb:Turla_Group | living off the land techniques |
| gptkb:Conti_ransomware_campaigns | use of custom ransomware builder |
| gptkb:Zebrocy | lateral movement |
| gptkb:Conti_ransomware_campaigns | disabling security software |
| gptkb:Conti_ransomware_campaigns | living off the land techniques |
| gptkb:MuddyWater_group | use of legitimate tools for lateral movement |
| gptkb:APT41 | privilege escalation |
| gptkb:APT41 | remote desktop protocol abuse |
| gptkb:Gamaredon | rapid deployment of new malware variants |
| gptkb:APT41 | supply chain compromise |
| gptkb:APT12 | watering hole attacks |