Mapping #trickbot and RevengeRAT with MITRE ATT&CK and AlienVault USM Anywhere
▻https://hackernoon.com/mapping-trickbot-and-revengerat-with-mitre-att-ck-and-alienvault-usm-any
MITRE ATT&CK™ (Adversarial Tactics, Techniques and Common Knowledge) is a framework for understanding attackers’ behaviors and actions.We are pleased to announce that AlienVault USM Anywhere and Open Threat Exchange (OTX) now include MITRE ATT&CK™ information. By mapping alarms to their corresponding ATT&CK techniques, we are assisting in prioritizing analysis work by understanding the context and scope of an attack.Below we’ve outlined how this new capability can help you investigate two threats — TrickBot and RevengeRat.Mapping a Trickbot infection with ATT&CKTrickbot is a #malware family that was discovered a few years ago targeting the banking industry, but following some investigations, it is still active and evolving. The malware is usually delivered using attached Office (...)