🇨🇳

RedGolf

APT Group Information theft and espionage Financial crime 3 zero-day CVEs ETDA ✓

Also Known As

No alias recorded

Target Countries 2

Countries highlighted in red

Japan United States

Sectors Targeted

Semiconductor and Other Electronic Component Manufacturing 33441 Public Administration 92 Research and Development in the Social Sciences and Humanities 54172 Executive, Legislative, and Other General Government Support 9211 Automobile Dealers 4411 Healthcare Grantmaking and Giving Services 8132 Religious, Grantmaking, Civic, Professional, and Similar Organizations 813 Commercial Banking 52211 Accommodation 721 religious organizations Automotive Construction 23 Freight Transportation Arrangement 48851 Employment Placement Agencies and Executive Search Services 56131 Oil and Gas Extraction 211 Chemical Manufacturing 325 Public Relations Agencies 54182 Real Estate 531 Technology NAICS:44 44 Intergovernmental Motion Picture and Video Production 51211 Toilet Preparation Manufacturing 32562 Newspaper Publishers 51111 Advertising Agencies 54181 Utilities 22 Pharmaceutical and Medicine Manufacturing 32541 Management Consulting Services 54161 Media Colleges, Universities, and Professional Schools 6113 Space Research and Technology 927 Motor Vehicle Manufacturing 3361 Online video game companies Data Processing, Hosting, and Related Services 51821 Pharmaceutical Religious Organizations Publishing Industries (except Internet) 511 Civic and Social Organizations 8134 Media and Entertainment Computer Systems Design and Related Services 54151 Telecommunications Internet Publishing and Broadcasting and Web Search Portals 51913 National Security and International Affairs 928110 Government All Other Information Services 51919 Computer Systems Design Services 541512 Educational Support Services 6117 Aviation Other Services (except Public Administration) 81 Telecommunications 517 Education Information Technology Insurance Carriers and Related Activities 524 Educational Services 61 IT Air Transportation 481 Health Care and Social Assistance 62 Hospitals 622 Financial Information 51 Defense NAICS:31 31

Details

Origin 🇨🇳 CN
Last Updated 29 Apr 2023

MITRE ATT&CK 150

T1001 T1001.003 T1003 T1003.001 T1003.002 T1003.003 T1005 T1008 T1012 T1014 T1016 T1018 T1021 T1021.001 T1021.002 T1027 - Obfuscated Files or Information T1027.002 T1027.013 T1030 T1033 T1036 T1036.004 T1036.005 T1037 T1041 - Exfiltration Over C2 Channel T1046 T1047 T1048 T1048.003 T1049 T1053 - Scheduled Task/Job T1053.005 T1055 - Process Injection T1056 - Input Capture T1056.001 T1057 T1059 T1059.001 T1059.003 T1059.004 T1059.007 T1069 T1070 T1070.001 T1070.003 T1070.004 T1071 - Application Layer Protocol T1071.001 T1071.002 T1071.004 T1074 T1074.001 T1078 T1078.003 T1082 - System Information Discovery T1083 T1087 T1087.001 T1087.002 T1090 T1098 T1098.007 T1102 - Web Service T1102.001 T1104 T1105 - Ingress Tool Transfer T1106 - Native API T1110 T1112 T1119 T1133 T1134 T1135 T1136 T1136.001 T1140 - Deobfuscate/Decode Files or Information T1190 T1195 T1195.002 T1197 T1203 - Exploitation for Client Execution T1204 - User Execution T1213 T1213.003 T1213.006 T1218 - Signed Binary Proxy Execution T1218.001 T1218.011 T1480 T1480.001 T1484 T1484.001 T1486 T1495 - Firmware Corruption T1496 T1496.001 T1505 T1505.003 T1542 T1542.003 T1543 T1543.003 T1546 T1546.008 T1547 - Boot or Logon Autostart Execution T1547.001 T1550 T1550.002 T1553 T1553.002 T1555 T1555.003 T1560 T1560.001 T1560.003 T1562 T1562.006 T1566 - Phishing T1566.001 T1567 T1567.002 T1568 T1568.002 T1569 T1569.002 T1570 T1573 T1573.002 T1574 - Hijack Execution Flow T1574.001 T1574.006 T1583 T1583.001 T1583.007 T1586 T1586.003 T1588 T1588.002 T1588.003 T1593 T1593.002 T1594 T1595 T1595.002 T1595.003 T1596 T1596.005 T1599 T1656 T1680

Related Zero-Days 3

CVE-2023-20198 CVE-2025-8088 CVE-2025-8110