Skip to content

Hide Navigation Hide TOC

Domain Generation Algorithms - T1520 (60623164-ccd8-4508-a141-b5a34820b3de)

Adversaries may use Domain Generation Algorithms (DGAs) to procedurally generate domain names for command and control communication, and other uses such as malicious application distribution.(Citation: securelist rotexy 2018)

DGAs increase the difficulty for defenders to block, track, or take over the command and control channel, as there potentially could be thousands of domains that malware can check for instructions.

Cluster A Galaxy A Cluster B Galaxy B Level
Domain Generation Algorithms - T1520 (60623164-ccd8-4508-a141-b5a34820b3de) Attack Pattern Domain Generation Algorithms - T1637.001 (fd211238-f767-4599-8c0d-9dca36624626) Attack Pattern 1
Dynamic Resolution - T1637 (2ccc3d39-9598-4d32-9657-42e1c7095d26) Attack Pattern Domain Generation Algorithms - T1637.001 (fd211238-f767-4599-8c0d-9dca36624626) Attack Pattern 2