# EnvyScout > Tipo: **malware** · S0634 · [MITRE ATT&CK](https://attack.mitre.org/software/S0634) ## Descrição [[s0634-envyscout|EnvyScout]] é um dropper utilizado pelo [[g0016-apt29|APT29]] desde pelo menos 2021. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1480-execution-guardrails|T1480 - Execution Guardrails]] - [[t1204-002-malicious-file|T1204.002 - Malicious File]] - [[t1218-011-rundll32|T1218.011 - Rundll32]] - [[t1005-data-from-local-system|T1005 - Data from Local System]] - [[t1566-001-spearphishing-attachment|T1566.001 - Spearphishing Attachment]] - [[t1140-deobfuscatedecode-files-or-information|T1140 - Deobfuscaté/Decode Files or Information]] - [[t1027-013-encryptedencoded-file|T1027.013 - Encrypted/Encoded File]] - [[t1059-007-javascript|T1059.007 - JavaScript]] - [[t1564-001-hidden-files-and-directories|T1564.001 - Hidden Files and Directories]] - [[t1059-003-windows-command-shell|T1059.003 - Windows Command Shell]] - [[t1027-006-html-smuggling|T1027.006 - HTML Smuggling]] - [[t1187-forced-authentication|T1187 - Forced Authentication]] - [[t1036-masquerading|T1036 - Masquerading]] ## Grupos que Usam - [[g0016-apt29|APT29]] ## Referências - [MITRE ATT&CK - S0634](https://attack.mitre.org/software/S0634)