& Encrypt Files for Ransom (mobile)
Jump to navigation Jump to search
|Description:||The 'encrypt files' Behavior encrypts one or more files on the system on which the malware instance is executing, to make them unavailable for use by the users of the system.
This is currently an ATT&CK Mobile technique. For malware, it should be extended to ATT&CK Enterprise.
A better name might be "Encrypt Files."
|Associated Attributes:||Common: applicable platform, Common: encryption algorithm, Common: technique|
|Associated Capabilities/Subcapabilities:|| Effects
|Notes:||The encryption process usually follows the general pattern: