DET0650 Detection of Symmetric Cryptography
| Item |
Value |
| ID |
DET0650 |
| Version |
1.0 |
| Created |
21 October 2025 |
| Last Modified |
21 October 2025 |
Technique Detected: T1521.001 (Symmetric Cryptography)
Analytics
Android
AN1731
Since data encryption is a common practice in many legitimate applications and uses standard programming language-specific APIs, encrypting data for command and control communication is regarded as undetectable to the user.
Log Sources
| Data Component |
Name |
Channel |
|
|
|
Mutable Elements
iOS
AN1732
Since data encryption is a common practice in many legitimate applications and uses standard programming language-specific APIs, encrypting data for command and control communication is regarded as undetectable to the user.
Log Sources
| Data Component |
Name |
Channel |
|
|
|
Mutable Elements