# Epic > Tipo: **malware** · S0091 · [MITRE ATT&CK](https://attack.mitre.org/software/S0091) ## Descrição [[s0091-epic|Epic]] é um backdoor utilizado pelo grupo [[g0010-turla|Turla]]. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1012-query-registry|T1012 - Query Registry]] - [[t1057-process-discovery|T1057 - Process Discovery]] - [[t1071-001-web-protocols|T1071.001 - Web Protocols]] - [[t1033-system-owneruser-discovery|T1033 - System Owner/User Discovery]] - [[t1124-system-time-discovery|T1124 - System Time Discovery]] - [[t1083-file-and-directory-discovery|T1083 - File and Directory Discovery]] - [[t1070-004-file-deletion|T1070.004 - File Deletion]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1049-system-network-connections-discovery|T1049 - System Network Connections Discovery]] - [[t1018-remote-system-discovery|T1018 - Remote System Discovery]] - [[t1560-002-archive-via-library|T1560.002 - Archive via Library]] - [[t1055-011-extra-window-memory-injection|T1055.011 - Extra Window Memory Injection]] - [[t1553-002-code-signing|T1553.002 - Code Signing]] - [[t1087-001-local-account|T1087.001 - Local Account]] - [[t1560-archive-collected-data|T1560 - Archive Collected Data]] ## Grupos que Usam - [[g0010-turla|Turla]] ## Referências - [MITRE ATT&CK - S0091](https://attack.mitre.org/software/S0091)