Skip to content

DET0634 Detection of System Network Configuration Discovery

Item Value
ID DET0634
Version 1.0
Created 21 October 2025
Last Modified 21 October 2025

Technique Detected: T1422 (System Network Configuration Discovery)

Analytics

Android

AN1706

Application vetting services could look for usage of the READ_PRIVILEGED_PHONE_STATE Android permission. This could indicate that non-system apps are attempting to access information that they do not have access to.

Log Sources
Data Component Name Channel
Permissions Requests (DC0114) Application Vetting None
Mutable Elements
Field Description

iOS

AN1707

Application vetting services could look for usage of the READ_PRIVILEGED_PHONE_STATE Android permission. This could indicate that non-system apps are attempting to access information that they do not have access to.

Log Sources
Data Component Name Channel
Permissions Requests (DC0114) Application Vetting None
Mutable Elements
Field Description