# BACKSPACE > Tipo: **malware** · S0031 · [MITRE ATT&CK](https://attack.mitre.org/software/S0031) ## Descrição [[s0031-backspace|BACKSPACE]] é um backdoor utilizado pelo [[g0013-apt30|APT30]] que remonta a pelo menos 2005. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1112-modify-registry|T1112 - Modify Registry]] - [[t1059-003-windows-command-shell|T1059.003 - Windows Command Shell]] - [[t1012-query-registry|T1012 - Query Registry]] - [[t1071-001-web-protocols|T1071.001 - Web Protocols]] - [[t1057-process-discovery|T1057 - Process Discovery]] - [[t1132-002-non-standard-encoding|T1132.002 - Non-Standard Encoding]] - [[t1090-001-internal-proxy|T1090.001 - Internal Proxy]] - [[t1547-001-registry-run-keys-startup-folder|T1547.001 - Registry Run Keys / Startup Folder]] - [[t1041-exfiltration-over-c2-channel|T1041 - Exfiltration Over C2 Channel]] - [[t1083-file-and-directory-discovery|T1083 - File and Directory Discovery]] - [[t1104-multi-stage-channels|T1104 - Multi-Stage Channels]] - [[t1547-009-shortcut-modification|T1547.009 - Shortcut Modification]] - [[t1562-004-disable-or-modify-system-firewall|T1562.004 - Disable or Modify System Firewall]] ## Grupos que Usam - [[g0013-apt30|APT30]] ## Referências - [MITRE ATT&CK - S0031](https://attack.mitre.org/software/S0031)