# TajMahal > Tipo: **malware** · S0467 · [MITRE ATT&CK](https://attack.mitre.org/software/S0467) ## Descrição [[s0467-tajmahal|TajMahal]] é um framework de espionagem multifuncional em uso desde pelo menos 2014. O [[s0467-tajmahal|TajMahal]] é composto por dois pacotes distintos, denominados Tokyo e Yokohama, e pode implantar até 80 plugins. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1560-002-archive-via-library|T1560.002 - Archive via Library]] - [[t1125-video-capture|T1125 - Video Capture]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1113-screen-capture|T1113 - Screen Capture]] - [[t1123-audio-capture|T1123 - Audio Capture]] - [[t1518-001-security-software-discovery|T1518.001 - Security Software Discovery]] - [[t1119-automated-collection|T1119 - Automated Collection]] - [[t1124-system-time-discovery|T1124 - System Time Discovery]] - [[t1041-exfiltration-over-c2-channel|T1041 - Exfiltration Over C2 Channel]] - [[t1057-process-discovery|T1057 - Process Discovery]] - [[t1518-software-discovery|T1518 - Software Discovery]] - [[t1112-modify-registry|T1112 - Modify Registry]] - [[t1016-system-network-configuration-discovery|T1016 - System Network Configuration Discovery]] - [[t1020-automated-exfiltration|T1020 - Automated Exfiltration]] - [[t1129-shared-modules|T1129 - Shared Modules]] ## Referências - [MITRE ATT&CK - S0467](https://attack.mitre.org/software/S0467)