Home >
Enterprise >
Participants >
Trend Micro >
Valid Accounts (T1078)
|
|
See technique results for:
Carbanak+FIN7 |
||||||||
Step | ATT&CK Pattern |
|
||||||
4.A.4
|
|
|||||||
5.A.8
![]() |
|
|||||||
5.B.2
![]() |
|
|||||||
7.A.4
|
|
|||||||
7.B.2
|
|
|||||||
16.A.4
|
|
|||||||
19.A.1
|
|
APT29 |
||||||||
Step | ATT&CK Pattern |
|
||||||
8.C.1
|
|
|||||||
16.C.2
|
|
Procedure
Logged on to remote host Scranton (10.0.1.4) using valid credentials for user Pam
Criteria
Successful logon as user Pam on Scranton (10.0.1.4)
Footnotes
- Though no image was captured, MITRE confirmed that the vendor has the capability to show available telemetry in a separate view.
Procedure
Logged on to the domain controller host NewYork (10.0.0.4) using valid credentials for user MScott
Criteria
Successful logon as user MScott on NewYork (10.0.0.4)
Footnotes
- Though no image was captured, MITRE confirmed that the vendor has the capability to show available telemetry in a separate view.