golddragon | 70298c1bfc6b8e07c0600f9264712211bcc7b57b28853d8143f249639cdf6569 | Triage

Submit
Reports

Overview

overview

Static

static

70298c1bfc...69.exe

windows7_x64

70298c1bfc...69.exe

windows10_x64

Sharing

General

Target

70298c1bfc6b8e07c0600f9264712211bcc7b57b28853d8143f249639cdf6569
Size

487KB
Sample

210701-1ax6m5m44j
MD5

dd15c9f2669bce96098b3f7fa791c87d
SHA1

51d4122fa2c6ba1fea93845b28f5f872fe64d394
SHA256

70298c1bfc6b8e07c0600f9264712211bcc7b57b28853d8143f249639cdf6569
SHA512

f26aa6c7375af8fee7d6508dec9d8505f82fdab424bc76fbc6a02919101ccbde059b73d1c4ae1e49f2e252b6f07c4091882674a5cfb039988a68d8f638c8cb23

Score

10^/10

golddragon backdoor

Static task

static1

Behavioral task

behavioral1

Sample

70298c1bfc6b8e07c0600f9264712211bcc7b57b28853d8143f249639cdf6569.exe

Resource

win7v20210408

golddragon backdoor

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

70298c1bfc6b8e07c0600f9264712211bcc7b57b28853d8143f249639cdf6569.exe

Resource

win10v20210408

golddragon backdoor

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  70298c1bfc6b8e07c0600f9264712211bcc7b57b28853d8143f249639cdf6569
- Size
  
  487KB
- MD5
  
  dd15c9f2669bce96098b3f7fa791c87d
- SHA1
  
  51d4122fa2c6ba1fea93845b28f5f872fe64d394
- SHA256
  
  70298c1bfc6b8e07c0600f9264712211bcc7b57b28853d8143f249639cdf6569
- SHA512
  
  f26aa6c7375af8fee7d6508dec9d8505f82fdab424bc76fbc6a02919101ccbde059b73d1c4ae1e49f2e252b6f07c4091882674a5cfb039988a68d8f638c8cb23
Score

10^/10

golddragon backdoor
- GoldDragon
  GoldDragon is a second-stage backdoor attributed to Kimsuky.
  backdoor golddragon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

golddragonbackdoor

behavioral2

golddragonbackdoor

© 2018-2024

Terms | Privacy