🇮🇷

APT-C-34

APT Group Information theft and espionage ETDA ✓

Also Known As 1 names

Golden Falcon

Target Countries 1

Countries highlighted in red

China

Sectors Targeted

Telecommunications 517

Details

Origin 🇮🇷 IR
Last Updated 01 Jun 2022

Malware Families 22

rcs
redcap
google_drive_rat
nautilus
lokirat
neuron
STEALHOOK
pickpocket
jason
elmachete_dropper_2022
saitama
valuevault
pyark
longwatch
spynote
twoface
Loki RAT
alma_communicator
karkoff
tonedeaf
ismagent
ismdoor

MITRE ATT&CK 119

T1003 T1003.001 T1003.004 T1003.005 T1005 T1007 T1008 T1012 T1016 T1021 T1021.001 T1021.004 T1025 T1027 - Obfuscated Files or Information T1027.005 T1027.013 T1033 T1036 T1036.005 T1046 T1047 T1048 T1048.003 T1049 T1053 T1053.005 T1055 - Process Injection T1056 T1056.001 T1057 T1059 T1059.001 T1059.003 T1059.005 T1059.006 T1068 T1069 T1069.001 T1069.002 T1070 T1070.004 T1071 T1071.001 T1071.004 T1074 T1074.001 T1078 T1078.002 T1082 T1087 T1087.001 T1087.002 T1105 - Ingress Tool Transfer T1106 - Native API T1110 T1112 T1113 T1115 T1119 T1120 T1132 T1132.001 T1133 T1137 T1137.004 T1140 - Deobfuscate/Decode Files or Information T1189 T1195 T1201 T1203 T1204 - User Execution T1204.001 T1204.002 T1217 T1218 T1218.001 T1218.007 T1219 T1497 T1497.001 T1505 T1505.003 T1518 T1543 T1543.003 T1552 T1552.001 T1553 T1553.002 T1555 T1555.003 T1555.004 T1556 T1556.002 T1562 T1562.004 T1566 - Phishing T1566.001 T1566.002 T1566.003 T1572 T1573 T1573.002 T1574 - Hijack Execution Flow T1583 T1583.001 T1584 T1584.004 T1585 T1585.003 T1586 T1586.002 T1587 T1587.001 T1588 T1588.002 T1588.003 T1608 T1608.001

Related Zero-Days

No zero-day CVE linked to this actor