# Zox > Tipo: **malware** · S0672 · [MITRE ATT&CK](https://attack.mitre.org/software/S0672) ## Descrição [[s0672-zox|Zox]] é uma ferramenta de acesso remoto utilizada pelo [[g0001-axiom|Axiom]] desde pelo menos 2008. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1027-013-encryptedencoded-file|T1027.013 - Encrypted/Encoded File]] - [[t1001-002-steganography|T1001.002 - Steganography]] - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1083-file-and-directory-discovery|T1083 - File and Directory Discovery]] - [[t1021-002-smbwindows-admin-shares|T1021.002 - SMB/Windows Admin Shares]] - [[t1005-data-from-local-system|T1005 - Data from Local System]] - [[t1057-process-discovery|T1057 - Process Discovery]] - [[t1068-exploitation-for-privilege-escalation|T1068 - Exploitation for Privilege Escalation]] - [[t1680-local-storage-discovery|T1680 - Local Storage Discovery]] ## Grupos que Usam - [[g0001-axiom|Axiom]] ## Referências - [MITRE ATT&CK - S0672](https://attack.mitre.org/software/S0672)