Alternative names (2)
TTPsInclude • usedTTPsRandom triples
| Subject | Object |
|---|---|
| gptkb:Winnti | supply chain attacks |
| gptkb:APT41 | spear phishing |
| gptkb:APT60 | spear phishing |
| gptkb:APT12 | spear phishing |
| gptkb:APT41 | use of legitimate software for persistence |
| gptkb:Turla_Group | living off the land techniques |
| gptkb:APT41 | credential theft |
| gptkb:Conti_ransomware_campaigns | shadow copy deletion |
| gptkb:APT54 | use of legitimate credentials |
| gptkb:APT41 | watering hole attacks |
| gptkb:APT41 | use of publicly available tools |
| gptkb:Conti_ransomware_campaigns | phishing emails |
| gptkb:Conti_ransomware_campaigns | credential dumping |
| gptkb:APT41 | lateral movement |
| gptkb:APT41 | use of open-source tools |
| gptkb:APT41 | web shell deployment |
| gptkb:APT54 | use of web shells |
| gptkb:APT41 | privilege escalation |
| gptkb:APT20 | living off the land |
| gptkb:Conti_ransomware_campaigns | public shaming of victims |