Home >
Enterprise >
Participants >
FireEye >
Encrypted Channel (T1573)
|
|
Carbanak+FIN7 |
||||
Step | ATT&CK Pattern |
|
||
1.A.11
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
||
8.A.3
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
||
14.A.7
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
||
16.A.9
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
||
17.A.6
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
||
20.A.4
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
APT29 |
||||||
Step | ATT&CK Pattern |
|
||||
1.A.4
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Symmetric Cryptography (T1573.001) |
|
||||
3.B.5
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
||||
11.A.15
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
APT3 |
||||
Step | ATT&CK Pattern |
|
||
11.B.1.3
|
Tactic Command and Control (TA0011) Subtechnique Encrypted Channel: Asymmetric Cryptography (T1573.002) |
|
Procedure
Empire: Encrypted C2 channel established using HTTPS
Footnotes
- Managed Defense Reports are reports provided by FireEye's managed detection and response (MDR) service. FireEye provided reports to MITRE after the completion of the evaluation to mimic what they would produce in a real incident.

