Windows Registry Key Deletion (1177a4c5-31c8-400c-8544-9071166afa0e)

Removal of a Registry Key (ex: Windows EID 4658 or Sysmon EID 12)

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Windows Registry Key Deletion (1177a4c5-31c8-400c-8544-9071166afa0e)	mitre-data-component	Indicator Removal - T1070 (799ace7f-e227-4411-baa0-8868704f2a69)	Attack Pattern	1
Clear Persistence - T1070.009 (d2c4e5ea-dbdf-4113-805a-b1e2a337fb33)	Attack Pattern	Windows Registry Key Deletion (1177a4c5-31c8-400c-8544-9071166afa0e)	mitre-data-component	1
Windows Registry Key Deletion (1177a4c5-31c8-400c-8544-9071166afa0e)	mitre-data-component	Modify Registry - T1112 (57340c81-c025-4189-8fa0-fc7ede51bae4)	Attack Pattern	1
Windows Registry Key Deletion (1177a4c5-31c8-400c-8544-9071166afa0e)	mitre-data-component	Disable or Modify Tools - T1562.001 (ac08589e-ee59-4935-8667-d845e38fe579)	Attack Pattern	1
Windows Registry Key Deletion (1177a4c5-31c8-400c-8544-9071166afa0e)	mitre-data-component	Impair Defenses - T1562 (3d333250-30e4-4a82-9edc-756c68afc529)	Attack Pattern	1
Clear Persistence - T1070.009 (d2c4e5ea-dbdf-4113-805a-b1e2a337fb33)	Attack Pattern	Indicator Removal - T1070 (799ace7f-e227-4411-baa0-8868704f2a69)	Attack Pattern	2
Disable or Modify Tools - T1562.001 (ac08589e-ee59-4935-8667-d845e38fe579)	Attack Pattern	Impair Defenses - T1562 (3d333250-30e4-4a82-9edc-756c68afc529)	Attack Pattern	2