golddragon | c54837d0b856205bd4ae01887aae9178f55f16e0e1a1e1ff59bd18dbc8a3dd82 | Triage

Sharing

General

Target

c54837d0b856205bd4ae01887aae9178f55f16e0e1a1e1ff59bd18dbc8a3dd82
Size

100KB
Sample

220124-dz43qsbbb9
MD5

c605b7c3e4c339642db6a33c5780b49b
SHA1

c2f01355880cd9dfeef75cff189f4a8af421e0d3
SHA256

c54837d0b856205bd4ae01887aae9178f55f16e0e1a1e1ff59bd18dbc8a3dd82
SHA512

02ad68001d5e7754469584dd833ec902f56fd68222937819a5174450d18dc037cbcfdd8df770365d452519ef4c9081ecfd19e38f08fda2f78c441a1062a9cb26

Score

10^/10

golddragon backdoor

Malware Config

Targets

- Target
  
  c54837d0b856205bd4ae01887aae9178f55f16e0e1a1e1ff59bd18dbc8a3dd82
- Size
  
  100KB
- MD5
  
  c605b7c3e4c339642db6a33c5780b49b
- SHA1
  
  c2f01355880cd9dfeef75cff189f4a8af421e0d3
- SHA256
  
  c54837d0b856205bd4ae01887aae9178f55f16e0e1a1e1ff59bd18dbc8a3dd82
- SHA512
  
  02ad68001d5e7754469584dd833ec902f56fd68222937819a5174450d18dc037cbcfdd8df770365d452519ef4c9081ecfd19e38f08fda2f78c441a1062a9cb26
Score

10^/10

golddragon backdoor
- GoldDragon
  GoldDragon is a second-stage backdoor attributed to Kimsuky.
  backdoor golddragon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

golddragonbackdoor

behavioral2