# Squirrelwaffle > Tipo: **malware** · S1030 · [MITRE ATT&CK](https://attack.mitre.org/software/S1030) ## Descrição [[squirrelwaffle|Squirrelwaffle]] é um loader observado pela primeira vez em setembro de 2021. Foi utilizado em campanhas de spam por e-mail para distribuir malwares adicionais, como o [[s0154-cobalt-strike|Cobalt Strike]] e o trojan bancário [[s0650-qakbot|QakBot]]. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1033-system-owneruser-discovery|T1033 - System Owner/User Discovery]] - [[t1059-005-visual-basic|T1059.005 - Visual Basic]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1041-exfiltration-over-c2-channel|T1041 - Exfiltration Over C2 Channel]] - [[t1566-002-spearphishing-link|T1566.002 - Spearphishing Link]] - [[t1218-010-regsvr32|T1218.010 - Regsvr32]] - [[t1140-deobfuscatedecode-files-or-information|T1140 - Deobfuscaté/Decode Files or Information]] - [[t1204-001-malicious-link|T1204.001 - Malicious Link]] - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1566-001-spearphishing-attachment|T1566.001 - Spearphishing Attachment]] - [[t1132-001-standard-encoding|T1132.001 - Standard Encoding]] - [[t1071-001-web-protocols|T1071.001 - Web Protocols]] - [[t1204-002-malicious-file|T1204.002 - Malicious File]] - [[t1027-013-encryptedencoded-file|T1027.013 - Encrypted/Encoded File]] - [[t1027-002-software-packing|T1027.002 - Software Packing]] ## Referências - [MITRE ATT&CK - S1030](https://attack.mitre.org/software/S1030)