GoldenJackal
· Published 21/12/2025 00:36 · Modified 21/12/2025 00:36
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 00:36
- Modified
- 21/12/2025 00:36
- Updated at
- 21/12/2025 00:36
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 28 attack patterns (mitre), 14 malware, 1 sectors, 9 countries, 71 indicators
Description
No description.
Marking (TLP)
TLP:GREEN
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
11 Malwares 1 APT
Attack patterns (MITRE) (28)
-
T1071 usesApplication Layer Protocol MITRE
-
T1552 usesUnsecured Credentials MITRE
-
T1193 uses
-
T1053.005 usesScheduled Task MITRE
-
T1041 usesExfiltration Over C2 Channel MITRE
-
T1555 usesCredentials from Password Stores MITRE
-
T1055 usesProcess Injection MITRE
-
T1562 usesImpair Defenses MITRE
-
T1176 usesSoftware Extensions MITRE
-
T1082 usesSystem Information Discovery MITRE
-
T1573 usesEncrypted Channel MITRE
-
T1127 usesTrusted Developer Utilities Proxy Execution MITRE
Malware (14)
-
GoldenDealer usesFamily
-
LegionLoader usesFamily
-
GoldenPyBlacklist usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Jackal uses
-
GoldenDrive usesFamily
-
Satacom usesFamily
-
GoldenMailer usesFamily
-
GoldenAce usesFamily
-
GoldenBlacklist usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
GoldenHowl usesFamily
-
GoldenUsbCopy usesFamily
-
GoldenUsbGo usesFamily
Sectors (1)
-
Government targets
Countries (9)
-
Mexico targets
-
Algeria targets
-
Türkiye targets
-
Egypt targets
-
India targets
-
Brazil targets
-
Indonesia targets
-
Belarus targets
-
Viet Nam targets
Indicators (71)
-
filetosend-upload.netindicates -
ht-input.cfdindicates -
fire-h.xyzindicates -
enough-are.xyzindicates -
noname-domain.comindicates -
close-h.xyzindicates -
ht-dilemma.xyzindicates -
education-are.clickindicates -
dns-beast.comindicates -
hit-mee.comindicates -
io-strength.cfdindicates -
back-may.comindicates