สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency

Report

Home > List all groups > List all tools > List all groups using tool SideWalk

Threat Group Cards: A Threat Actor Encyclopedia

Tool: SideWalk

Names	SideWalk ScrambleCross
Category	Malware
Type	Reconnaissance, Backdoor
Description	(ESET) This backdoor shares multiple similarities with another backdoor used by the group: CrossWalk. SideWalk is a modular backdoor that can dynamically load additional modules sent from its C&C server, makes use of Google Docs as a dead drop resolver, and uses Cloudflare workers as a C&C server. It can also properly handle communication behind a proxy.
Information	<https://www.welivesecurity.com/2021/08/24/sidewalk-may-be-as-dangerous-as-crosswalk/> <https://documents.trendmicro.com/assets/white_papers/wp-earth-baku-an-apt-group-targeting-indo-pacific-countries.pdf> <https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/grayfly-china-sidewalk-malware>
Malpedia	<https://malpedia.caad.fkie.fraunhofer.de/details/win.sidewalk>

Last change to this tool card: 28 December 2021

Download this tool card in JSON format

All groups using tool SideWalk

Changed	Name	Country	Observed
APT groups
	APT 41		2012-Aug 2024

1 group listed (1 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Report incidents

+66 (0)2-123-1227

[email protected]