216.73.216.36

T1637.001: Domain Generation Algorithms

View on MITRE ATT&CK The MITRE Corporation · Published 05/04/2022 21:59 · Modified 27/03/2026 01:41

Essential information

MITRE technique ID
T1637.001
Confidence
100/100
Revoked
No
Published
05/04/2022 21:59
Modified
27/03/2026 01:41
Author / Source
The MITRE Corporation

Platforms

android iOS

Description

Adversaries may use [Domain Generation Algorithms](https://attack.mitre.org/techniques/T1637/001) (DGAs) to procedurally generate domain names for uses such as command and control communication or malicious application distribution.(Citation: securelist rotexy 2018) DGAs increase the difficulty for defenders to block, track, or take over the command and control channel, as there could potentially be thousands of domains that malware can check for instructions.

Kill chain phases

Kill chainPhase
mitre-mobile-attack command-and-control

Marking (TLP)

Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.

External references

Related entities

Intrusion sets, malware, reports, vulnerabilities, indicators and other entities linked to this technique.