# Nebulae > Tipo: **malware** · S0630 · [MITRE ATT&CK](https://attack.mitre.org/software/S0630) ## Descrição [[s0630-nebulae|Nebulae]] é um backdoor utilizado pelo [[g0019-naikon|Naikon]] desde pelo menos 2020. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1680-local-storage-discovery|T1680 - Local Storage Discovery]] - [[t1005-data-from-local-system|T1005 - Data from Local System]] - [[t1095-non-application-layer-protocol|T1095 - Non-Application Layer Protocol]] - [[t1547-001-registry-run-keys-startup-folder|T1547.001 - Registry Run Keys / Startup Folder]] - [[t1057-process-discovery|T1057 - Process Discovery]] - [[t1106-native-api|T1106 - Native API]] - [[t1036-004-masquerade-task-or-service|T1036.004 - Masquerade Task or Service]] - [[t1070-004-file-deletion|T1070.004 - File Deletion]] - [[t1543-003-windows-service|T1543.003 - Windows Service]] - [[t1036-005-match-legitimate-resource-name-or-location|T1036.005 - Match Legitimaté Resource Name or Location]] - [[t1574-001-dll|T1574.001 - DLL]] - [[t1059-003-windows-command-shell|T1059.003 - Windows Command Shell]] - [[t1083-file-and-directory-discovery|T1083 - File and Directory Discovery]] - [[t1573-001-symmetric-cryptography|T1573.001 - Symmetric Cryptography]] ## Grupos que Usam - [[g0019-naikon|Naikon]] ## Referências - [MITRE ATT&CK - S0630](https://attack.mitre.org/software/S0630)