# CozyCar > Tipo: **malware** · S0046 · [MITRE ATT&CK](https://attack.mitre.org/software/S0046) ## Descrição [[s0046-cozycar|CozyCar]] é um malware utilizado pelo [[g0016-apt29|APT29]] entre 2010 e 2015. Trata-se de uma plataforma de malware modular cujo componente backdoor pode ser instruído a baixar e executar uma variedade de módulos com diferentes funcionalidades. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1059-003-windows-command-shell|T1059.003 - Windows Command Shell]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1071-001-web-protocols|T1071.001 - Web Protocols]] - [[t1102-002-bidirectional-communication|T1102.002 - Bidirectional Commúnication]] - [[t1547-001-registry-run-keys-startup-folder|T1547.001 - Registry Run Keys / Startup Folder]] - [[t1518-001-security-software-discovery|T1518.001 - Security Software Discovery]] - [[t1218-011-rundll32|T1218.011 - Rundll32]] - [[t1003-001-lsass-memory|T1003.001 - LSASS Memory]] - [[t1497-virtualizationsandbox-evasion|T1497 - Virtualization/Sandbox Evasion]] - [[t1027-013-encryptedencoded-file|T1027.013 - Encrypted/Encoded File]] - [[t1003-002-security-account-manager|T1003.002 - Security Account Manager]] - [[t1036-003-rename-legitimate-utilities|T1036.003 - Rename Legitimaté Utilities]] - [[t1053-005-scheduled-task|T1053.005 - Scheduled Task]] - [[t1543-003-windows-service|T1543.003 - Windows Service]] ## Grupos que Usam - [[g0016-apt29|APT29]] ## Referências - [MITRE ATT&CK - S0046](https://attack.mitre.org/software/S0046)