# Snip3 > Tipo: **malware** · S1086 · [MITRE ATT&CK](https://attack.mitre.org/software/S1086) ## Descrição [[s1086-snip3|Snip3]] é um sofisticado serviço de criptografia (crypter-as-a-service) em uso desde pelo menos 2021 para ofuscar e carregar diversas famílias de malware, incluindo [[s1087-asyncrat|AsyncRAT]], [[s0379-revenge-rat|Revenge RAT]], [[s0331-agent-tesla|Agent Tesla]] e [[s0198-netwire|NETWIRE]]. **Plataformas:** Windows ## Técnicas Utilizadas - [[t1140-deobfuscatedecode-files-or-information|T1140 - Deobfuscaté/Decode Files or Information]] - [[t1102-web-service|T1102 - Web Service]] - [[t1059-005-visual-basic|T1059.005 - Visual Basic]] - [[t1055-012-process-hollowing|T1055.012 - Process Hollowing]] - [[t1027-obfuscated-files-or-information|T1027 - Obfuscated Files or Information]] - [[t1547-001-registry-run-keys-startup-folder|T1547.001 - Registry Run Keys / Startup Folder]] - [[t1204-002-malicious-file|T1204.002 - Malicious File]] - [[t1082-system-information-discovery|T1082 - System Information Discovery]] - [[t1204-001-malicious-link|T1204.001 - Malicious Link]] - [[t1566-001-spearphishing-attachment|T1566.001 - Spearphishing Attachment]] - [[t1497-003-time-based-checks|T1497.003 - Time Based Checks]] - [[t1047-windows-management-instrumentation|T1047 - Windows Management Instrumentation]] - [[t1104-multi-stage-channels|T1104 - Multi-Stage Channels]] - [[t1105-ingress-tool-transfer|T1105 - Ingress Tool Transfer]] - [[t1566-002-spearphishing-link|T1566.002 - Spearphishing Link]] ## Grupos que Usam - [[g1018-ta2541|TA2541]] ## Referências - [MITRE ATT&CK - S1086](https://attack.mitre.org/software/S1086)