Question 1

What is AML.T0037 — Data from Local System?

Accepted Answer

Adversaries may search local system sources, such as file systems and configuration files or local databases, to find files of interest and sensitive data prior to Exfiltration. This can include basic fingerprinting information and sensitive data such as ssh keys.

Question 2

What is the authoritative source for AML.T0037?

Accepted Answer

Data from Local System (AML.T0037) is catalogued in MITRE ATLAS and curated for EU compliance use cases by SQUR.

AML.T0037Data from Local System

What it is

References

Related by meaning· 6