GroupProfiles: DragonForce.md
Recurso del BushidoUK Ransomware Tool Matrix - GroupProfiles.
DragonForce's Tools
| Discovery | RMM Tools | Defense Evasion | Credential Theft | OffSec | Networking | LOLBAS | Exfiltration |
|---|---|---|---|---|---|---|---|
| AdFind | | ADVobfuscator | LaZagne | Cobalt Strike | | PsExec | MEGA |
| Advanced IP Scanner | | Darkside/TrueSight driver (BYOVD) | Mimikatz | | | | RClone |
| PingCastle | | Hangzhou Shunwang Technology driver (BYOVD) | | | | | |
| SoftPerfect NetScan | | PCHunter | | | | | |
| | | ProcessHacker | | | | | |
> [!NOTE]
> This is the list of tools that have been observed during various intrusions that lead to DragonForce's ransomware deployment.
#### Sources
| Date Published | Report |
|---|---|
| 29 October 2025 | https://www.trendmicro.com/vinfo/us/security/news/ransomware-spotlight/ransomware-spotlight-dragonforce |
| 24 September 2024 | https://www.group-ib.com/blog/dragonforce-ransomware/ |