HI All,  We have couple of searches as shown below 
1. User Login From Suspicious Countries

2. Multiple AWS Console Failed Login Attempts from Different Source IPs

3. High CPU or Memory Usage on a server 

Can someone pls advise which Mitre techniques can each one of these be mapped to?

Thanks