Skip to content

DET0629 Detection of Exploitation for Client Execution

Item Value
ID DET0629
Version 1.0
Created 21 October 2025
Last Modified 21 October 2025

Technique Detected: T1658 (Exploitation for Client Execution)

Analytics

Android

AN1699

Network traffic analysis may reveal processes communicating with malicious domains.

Log Sources
Data Component Name Channel
Network Communication (DC0113) Application Vetting None
Mutable Elements
Field Description

iOS

AN1700

Network traffic analysis may reveal processes communicating with malicious domains.

Log Sources
Data Component Name Channel
Network Communication (DC0113) Application Vetting None
Mutable Elements
Field Description