🇷🇺
GOLD SOUTHFIELD
APT Group
Financial gain
1 zero-day CVE
ETDA ✓
Also Known As
No alias recordedTarget Countries 17
Countries highlighted in red
Argentina
Australia
Brazil
Canada
Colombia
Germany
Spain
United Kingdom
India
Italy
Japan
Mexico
Netherlands
Russian Federation
Sweden
Province of China Taiwan
United States
Sectors Targeted
Information
51
Software Publishers
5112
Computer Systems Design and Related Services
54151
Oil and Gas Extraction
211
Other Services (except Public Administration)
81
Insurance Carriers and Related Activities
524
Health Care and Social Assistance
62
Offices of Lawyers
541110
NAICS:48
48
Computer Systems Design Services
541512
National Security and International Affairs
928
Internet Publishing and Broadcasting and Web Search Portals
51913
Wholesale Trade
42
Professional, Scientific, and Technical Services
54
National Security and International Affairs
928110
Arts, Entertainment, and Recreation
71
NAICS:44
44
Public Administration
92
Computer Systems Design and Related Services
5415
Other Information Services
519
Utilities
22
NAICS:31
31
Performing Arts Companies
7111
Finance and Insurance
52
Educational Services
61
Details
Origin
🇷🇺 RU
Last Updated
01 Jun 2022
Malware Families 1
SODINOKIBI
MITRE ATT&CK 41
T1021
T1027 - Obfuscated Files or Information
T1027.010
T1045 - Software Packing
T1055 - Process Injection
T1057 - Process Discovery
T1059
T1059.001
T1060 - Registry Run Keys / Startup Folder
T1069 - Permission Groups Discovery
T1069.002 - Domain Groups
T1071 - Application Layer Protocol
T1071.001 - Web Protocols
T1071.004 - DNS
T1078.003
T1105 - Ingress Tool Transfer
T1113 - Screen Capture
T1133
T1140 - Deobfuscate/Decode Files or Information
T1190
T1195
T1195.002
T1199
T1204 - User Execution
T1219
T1456 - Drive-by Compromise
T1480 - Execution Guardrails
T1486
T1553 - Subvert Trust Controls
T1553.002 - Code Signing
T1557 - Man-in-the-Middle
T1562 - Impair Defenses
T1562.001 - Disable or Modify Tools
T1562.003 - Impair Command History Logging
T1566 - Phishing
T1566.001
T1568 - Dynamic Resolution
T1568.002 - Domain Generation Algorithms
T1583 - Acquire Infrastructure
T1583.001 - Domains
T1608.004 - Drive-by Target