Skip to content

Hide Navigation Hide TOC

Compromised software/update chain (installer/write → first-run/child → egress/signature anomaly) - DET0309 (77d3b532-9c4f-4f9f-9581-3009b201435d)

None

Cluster A Galaxy A Cluster B Galaxy B Level
Analytic 0864 - AN0864 (86a87684-5fd5-4778-be36-5dfa07a4246d) Analytics Compromised software/update chain (installer/write → first-run/child → egress/signature anomaly) - DET0309 (77d3b532-9c4f-4f9f-9581-3009b201435d) Detection Strategies 1
Compromise Software Supply Chain - T1195.002 (bd369cd9-abb8-41ce-b5bb-fff23ee86c00) Attack Pattern Compromised software/update chain (installer/write → first-run/child → egress/signature anomaly) - DET0309 (77d3b532-9c4f-4f9f-9581-3009b201435d) Detection Strategies 1
Analytic 0862 - AN0862 (e3ddaba3-282b-4bd0-b316-78b724b79acd) Analytics Compromised software/update chain (installer/write → first-run/child → egress/signature anomaly) - DET0309 (77d3b532-9c4f-4f9f-9581-3009b201435d) Detection Strategies 1
Analytic 0863 - AN0863 (b6f88f17-e80f-4c75-99a5-f752880196aa) Analytics Compromised software/update chain (installer/write → first-run/child → egress/signature anomaly) - DET0309 (77d3b532-9c4f-4f9f-9581-3009b201435d) Detection Strategies 1
Compromise Software Supply Chain - T1195.002 (bd369cd9-abb8-41ce-b5bb-fff23ee86c00) Attack Pattern Supply Chain Compromise - T1195 (3f18edba-28f4-4bb9-82c3-8aa60dcac5f7) Attack Pattern 2