Skip to content

Hide Navigation Hide TOC

User Account Deletion (d6257b8e-869c-41c0-8731-fdca40858a91)

Removal of an account (ex: Windows EID 4726 or /var/log access/authentication logs)

Cluster A Galaxy A Cluster B Galaxy B Level
Indicator Removal - T1070 (799ace7f-e227-4411-baa0-8868704f2a69) Attack Pattern User Account Deletion (d6257b8e-869c-41c0-8731-fdca40858a91) mitre-data-component 1
Account Access Removal - T1531 (b24e2a20-3b3d-4bf0-823b-1ed765398fb0) Attack Pattern User Account Deletion (d6257b8e-869c-41c0-8731-fdca40858a91) mitre-data-component 1
User Account Deletion (d6257b8e-869c-41c0-8731-fdca40858a91) mitre-data-component Clear Persistence - T1070.009 (d2c4e5ea-dbdf-4113-805a-b1e2a337fb33) Attack Pattern 1
Indicator Removal - T1070 (799ace7f-e227-4411-baa0-8868704f2a69) Attack Pattern Clear Persistence - T1070.009 (d2c4e5ea-dbdf-4113-805a-b1e2a337fb33) Attack Pattern 2