# Spica > Tipo: **malware** · S1140 · [MITRE ATT&CK](https://attack.mitre.org/software/S1140) ## Descrição [[s1140-spica|Spica]] é um backdoor personalizado escrito em Rust utilizado pelo [[g1033-star-blizzard|Star Blizzard]] desde pelo menos 2023. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1059-001-powershell|T1059.001 - PowerShell]] - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1560-archive-collected-data|T1560 - Archive Collected Data]] - [[t1083-file-and-directory-discovery|T1083 - File and Directory Discovery]] - [[t1539-steal-web-session-cookie|T1539 - Steal Web Session Cookie]] - [[t1053-005-scheduled-task|T1053.005 - Scheduled Task]] - [[t1036-004-masquerade-task-or-service|T1036.004 - Masquerade Task or Service]] - [[t1095-non-application-layer-protocol|T1095 - Non-Application Layer Protocol]] - [[t1140-deobfuscatedecode-files-or-information|T1140 - Deobfuscaté/Decode Files or Information]] ## Grupos que Usam - [[g1033-star-blizzard|Star Blizzard]] ## Referências - [MITRE ATT&CK - S1140](https://attack.mitre.org/software/S1140)