# StrifeWater > Tipo: **malware** · S1034 · [MITRE ATT&CK](https://attack.mitre.org/software/S1034) ## Descrição [[s1034-strifewater|StrifeWater]] é uma ferramenta de acesso remoto utilizada pelo [[g1009-moses-staff|Moses Staff]] nas fases iniciais de seus ataques desde pelo menos novembro de 2021. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1033-system-owneruser-discovery|T1033 - System Owner/User Discovery]] - [[t1059-003-windows-command-shell|T1059.003 - Windows Command Shell]] - [[t1106-native-api|T1106 - Native API]] - [[t1573-001-symmetric-cryptography|T1573.001 - Symmetric Cryptography]] - [[t1053-005-scheduled-task|T1053.005 - Scheduled Task]] - [[t1113-screen-capture|T1113 - Screen Capture]] - [[t1036-005-match-legitimate-resource-name-or-location|T1036.005 - Match Legitimaté Resource Name or Location]] - [[t1497-003-time-based-checks|T1497.003 - Time Based Checks]] - [[t1041-exfiltration-over-c2-channel|T1041 - Exfiltration Over C2 Channel]] - [[t1124-system-time-discovery|T1124 - System Time Discovery]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1083-file-and-directory-discovery|T1083 - File and Directory Discovery]] - [[t1005-data-from-local-system|T1005 - Data from Local System]] - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1070-004-file-deletion|T1070.004 - File Deletion]] ## Grupos que Usam - [[g1009-moses-staff|Moses Staff]] ## Referências - [MITRE ATT&CK - S1034](https://attack.mitre.org/software/S1034)