golddragon | 2df9e274ce0e71964aca4183cec01fb63566a907981a9e7384c0d73f86578fe4 | Triage

Submit
Reports

Overview

overview

Static

static

2df9e274ce...e4.dll

windows7_x64

2df9e274ce...e4.dll

windows10_x64

Sharing

General

Target

2df9e274ce0e71964aca4183cec01fb63566a907981a9e7384c0d73f86578fe4
Size

88KB
Sample

220124-f8ycnacgd4
MD5

5a6d034b9f656bd60cc29688d2eba618
SHA1

83706ddaa5ea5ee2cfff54b7c809458a39163a7a
SHA256

2df9e274ce0e71964aca4183cec01fb63566a907981a9e7384c0d73f86578fe4
SHA512

525a2cb4470e1a24bd2ed99df352565bee3f95124cb4221244d943fe99a65738991f037fcdf7040d1a76b6b9f96bf14674e196e7411666161f4e5ebe333e1b01

Score

10^/10

golddragon backdoor

Static task

static1

Behavioral task

behavioral1

Sample

2df9e274ce0e71964aca4183cec01fb63566a907981a9e7384c0d73f86578fe4.dll

Resource

win7-en-20211208

golddragon backdoor

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2df9e274ce0e71964aca4183cec01fb63566a907981a9e7384c0d73f86578fe4.dll

Resource

win10-en-20211208

golddragon backdoor

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  2df9e274ce0e71964aca4183cec01fb63566a907981a9e7384c0d73f86578fe4
- Size
  
  88KB
- MD5
  
  5a6d034b9f656bd60cc29688d2eba618
- SHA1
  
  83706ddaa5ea5ee2cfff54b7c809458a39163a7a
- SHA256
  
  2df9e274ce0e71964aca4183cec01fb63566a907981a9e7384c0d73f86578fe4
- SHA512
  
  525a2cb4470e1a24bd2ed99df352565bee3f95124cb4221244d943fe99a65738991f037fcdf7040d1a76b6b9f96bf14674e196e7411666161f4e5ebe333e1b01
Score

10^/10

golddragon backdoor
- GoldDragon
  GoldDragon is a second-stage backdoor attributed to Kimsuky.
  backdoor golddragon
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

golddragonbackdoor

behavioral2

golddragonbackdoor

© 2018-2024

Terms | Privacy