Description
[Threat Group-1314](https://attack.mitre.org/groups/G0028) is an unattributed threat group that has used compromised credentials to log into a victim's remote access infrastructure. (Citation: Dell TG-1314)
Techniques Used (TTPs)
- T1021.002 — SMB/Windows Admin Shares (lateral-movement)
- T1059.003 — Windows Command Shell (execution)
- T1072 — Software Deployment Tools (execution, lateral-movement)
- T1078.002 — Domain Accounts (defense-evasion, persistence, privilege-escalation, initial-access)
Total TTPs: 4