# Prikormka > Tipo: **malware** · S0113 · [MITRE ATT&CK](https://attack.mitre.org/software/S0113) ## Descrição [Prikormka](https://attack.mitre.org/software/S0113) é uma família de malware utilizada em uma campanha conhecida como Operation Groundbait. Foi observado predominantemente na Ucrânia e estava ativo desde pelo menos 2008. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1573-001-symmetric-cryptography|T1573.001 - Symmetric Cryptography]] - [[t1056-001-keylogging|T1056.001 - Keylogging]] - [[t1218-011-rundll32|T1218.011 - Rundll32]] - [[t1027-013-encryptedencoded-file|T1027.013 - Encrypted/Encoded File]] - [[t1113-screen-capture|T1113 - Screen Capture]] - [[t1120-peripheral-device-discovery|T1120 - Peripheral Device Discovery]] - [[t1016-system-network-configuration-discovery|T1016 - System Network Configuration Discovery]] - [[t1555-003-credentials-from-web-browsers|T1555.003 - Credentials from Web Browsers]] - [[t1555-credentials-from-password-stores|T1555 - Credentials from Password Stores]] - [[t1574-001-dll|T1574.001 - DLL]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1025-data-from-removable-media|T1025 - Data from Removable Media]] - [[t1518-001-security-software-discovery|T1518.001 - Security Software Discovery]] - [[t1132-001-standard-encoding|T1132.001 - Standard Encoding]] - [[t1070-004-file-deletion|T1070.004 - File Deletion]] ## Referências - [MITRE ATT&CK - S0113](https://attack.mitre.org/software/S0113)