Create infected removable media
Use of removable media as part of the Launch phase requires an adversary to determine type, format, and content of the media and associated malware. 
Tactic: Build Capabilities
DetectionDetectable by Common Defenses (Yes/No/Partial): No
Explanation: Adversary will likely use code repositories, but development will be performed on their local systems.
Difficulty for the AdversaryEasy for the Adversary (Yes/No): Yes
Explanation: Several exploit repositories and tool suites exist for re-use and tailoring.
- Security Research labs. (n.d.). BadUSB Exposure. Retrieved March 9, 2017.