{'created': '2018-01-16T16:13:52.465Z',
 'created_by_ref': 'identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5',
 'description': 'To disguise the source of malicious traffic, adversaries may '
                'chain together multiple proxies. Typically, a defender will '
                'be able to identify the last proxy traffic traversed before '
                'it enters their network; the defender may or may not be able '
                'to identify any previous proxies before the last-hop proxy. '
                'This technique makes identifying the original source of the '
                'malicious traffic even more difficult by requiring the '
                'defender to trace malicious traffic through several proxies '
                'to identify its source.',
 'external_references': [{'external_id': 'T1188',
                          'source_name': 'mitre-attack',
                          'url': 'https://attack.mitre.org/techniques/T1188'}],
 'id': 'attack-pattern--7d751199-05fa-4a72-920f-85df4506c76c',
 'kill_chain_phases': [{'kill_chain_name': 'mitre-attack',
                        'phase_name': 'command-and-control'}],
 'modified': '2025-10-24T17:49:00.838Z',
 'name': 'Multi-hop Proxy',
 'object_marking_refs': ['marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168'],
 'revoked': True,
 'spec_version': '2.1',
 'type': 'attack-pattern',
 'x_mitre_attack_spec_version': '3.2.0',
 'x_mitre_deprecated': False,
 'x_mitre_detection': '',
 'x_mitre_domains': ['enterprise-attack'],
 'x_mitre_is_subtechnique': False,
 'x_mitre_modified_by_ref': 'identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5',
 'x_mitre_platforms': ['Linux', 'macOS', 'Windows'],
 'x_mitre_version': '1.1'}