Home >
Enterprise >
Participants >
ESET >
Remote System Discovery (T1018)
|
|
See technique results for:
Carbanak+FIN7 |
||||||||
Step | ATT&CK Pattern |
|
||||||
4.A.2
|
Tactic Discovery (TA0007) |
|
||||||
5.B.7
![]() |
Tactic Discovery (TA0007) |
|
||||||
6.A.2
|
Tactic Discovery (TA0007) |
|
||||||
15.A.8
|
Tactic Discovery (TA0007) |
|
Criteria
User kmitnick enumerates the domain controller via nslookup, which queries for the DC (10.0.0.4) over DNS (port 53)