Multilayer Encryption - T1079 (428ca9f8-0e33-442a-be87-f869cb4cf73e)
An adversary performs C2 communications using multiple layers of encryption, typically (but not exclusively) tunneling a custom encryption scheme within a protocol encryption scheme such as HTTPS or SMTPS.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Encrypted Channel - T1573 (b8902400-e6c5-4ba2-95aa-2d35b442b118) | Attack Pattern | Multilayer Encryption - T1079 (428ca9f8-0e33-442a-be87-f869cb4cf73e) | Attack Pattern | 1 |