# Explosive > Tipo: **malware** · S0569 · [MITRE ATT&CK](https://attack.mitre.org/software/S0569) ## Descrição [[s0569-explosive|Explosive]] é uma ferramenta de acesso remoto personalizada utilizada pelo grupo [[g0123-volatile-cedar|Volatile Cedar]]. Foi identificada pela primeira vez em ambiente real em 2015. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1016-system-network-configuration-discovery|T1016 - System Network Configuration Discovery]] - [[t1112-modify-registry|T1112 - Modify Registry]] - [[t1025-data-from-removable-media|T1025 - Data from Removable Media]] - [[t1056-001-keylogging|T1056.001 - Keylogging]] - [[t1033-system-owneruser-discovery|T1033 - System Owner/User Discovery]] - [[t1573-001-symmetric-cryptography|T1573.001 - Symmetric Cryptography]] - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1071-001-web-protocols|T1071.001 - Web Protocols]] - [[t1106-native-api|T1106 - Native API]] - [[t1115-clipboard-data|T1115 - Clipboard Data]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1564-001-hidden-files-and-directories|T1564.001 - Hidden Files and Directories]] ## Grupos que Usam - [[g0123-volatile-cedar|Volatile Cedar]] ## Referências - [MITRE ATT&CK - S0569](https://attack.mitre.org/software/S0569)