65efb532a1
DISARM is the new name for AMITT; DISARM is managed by the DISARM Foundation, who've been updating the frameworks elsewhere, including merging AM!TT and SP!CE.
904 B
904 B
Counter C00182: Redirection / malware detection/ remediation
-
Summary: Detect redirction or malware, then quarantine or delete. Example: (2015) Trustwave reported that a Bedep Trojan malware kit had begun infecting machines and forcing them to browse certain sites, artificially inflating traffic to a set of pro-Russia
-
Playbooks:
-
Metatechnique: M005 - removal
-
Resources needed:
-
Belongs to tactic stage: TA09
| Actor types | Sectors |
|---|---|
| A027 information security | S008 |
| Counters these Tactics |
|---|
| Counters these Techniques |
|---|
| T0011 Hijack legitimate account |
| T0054 Twitter bots amplify |
| Seen in incidents |
|---|
DO NOT EDIT ABOVE THIS LINE - PLEASE ADD NOTES BELOW