# HAWKBALL > Tipo: **malware** · S0391 · [MITRE ATT&CK](https://attack.mitre.org/software/S0391) ## Descrição [[s0391-hawkball|HAWKBALL]] é um backdoor observado em operações direcionadas ao setor governamental da Ásia Central. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1559-002-dynamic-data-exchange|T1559.002 - Dynamic Data Exchange]] - [[t1027-013-encryptedencoded-file|T1027.013 - Encrypted/Encoded File]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1071-001-web-protocols|T1071.001 - Web Protocols]] - [[t1033-system-owneruser-discovery|T1033 - System Owner/User Discovery]] - [[t1041-exfiltration-over-c2-channel|T1041 - Exfiltration Over C2 Channel]] - [[t1560-003-archive-via-custom-method|T1560.003 - Archive via Custom Method]] - [[t1203-exploitation-for-client-execution|T1203 - Exploitation for Client Execution]] - [[t1059-003-windows-command-shell|T1059.003 - Windows Command Shell]] - [[t1070-004-file-deletion|T1070.004 - File Deletion]] - [[t1106-native-api|T1106 - Native API]] ## Referências - [MITRE ATT&CK - S0391](https://attack.mitre.org/software/S0391)