ABOUT
Overview
Use Cases
Mapping Methodology
Scoring Rubric
Related Projects
ATT&CK OBJECTS
Matrix
Tactics
Techniques
MAPPING FRAMEWORKS
About Mappings
Amazon Web Services (AWS)
Azure
Known Exploited Vulnerabilities
Google Cloud Platform (GCP)
Intel vPro
NIST 800-53
M365
VERIS
You're currently viewing ATT&CK Version 16.1 Enterprise and VERIS 1.4.0.
Change versions here.
Home
Mapping Frameworks
VERIS Home
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
VERIS
action.malware.variety.Backdoor or C2
Mappings
Mappings
ATT&CK Version
16.1
ATT&CK Domain
Enterprise
VERIS
1.4.0
Change Versions
Capability ID
Capability Description
Mapping Type
ATT&CK ID
ATT&CK Name
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1008
Fallback Channels
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1098
Account Manipulation
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1205
Traffic Signaling
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1205.001
Port Knocking
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1505
Server Software Component
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1505.001
SQL Stored Procedures
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1505.002
Transport Agent
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1505.003
Web Shell
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1525
Implant Internal Image
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1543
Create or Modify System Process
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1546
Event Triggered Execution
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1547
Boot or Logon Autostart Execution
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1554
Compromise Host Software Binary
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1568
Dynamic Resolution
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1568.001
Fast Flux DNS
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1568.002
Domain Generation Algorithms
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1568.003
DNS Calculation
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1571
Non-Standard Port
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1572
Protocol Tunneling
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1573
Encrypted Channel
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1573.001
Symmetric Cryptography
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1573.002
Asymmetric Cryptography
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1583.001
Domains
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1583.002
DNS Server
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1583.006
Web Services
action.malware.variety.Backdoor or C2
Malware creates a remote control capability, but it's unclear if it's a backdoor for hacking or C2 for malware. Parent of 'C2' and 'Backdoor'.
related-to
T1584.002
DNS Server
