DOGCALL

Malware & Tools · DOGCALL

· MalwareS0213 · Zararlı Yazılım

Type

malware

Techniques

Used By

1 groups

Platforms

Windows

Description

DOGCALL is a backdoor used by APT37 that has been used to target South Korean government and military organizations in 2017. It is typically dropped using a Hangul Word Processor (HWP) exploit. (Citation: FireEye APT37 Feb 2018)

Tactic Coverage

collection (3)command and control (2)stealth (1)credential access (1)

Used By (1 groups)

G0067APT37InkySquid, ScarCruft

Techniques (6)

T1027.013Encrypted/Encoded File

stealth

T1056.001Keylogging

collectioncredential access

T1102.002Bidirectional Communication

command and control

T1105Ingress Tool Transfer

command and control

T1113Screen Capture

collection

T1123Audio Capture

collection

References

https://attack.mitre.org/software/S0213 https://services.google.com/fh/files/misc/apt37-reaper-the-overlooked-north-korean-actor.pdf