GOLD SYMPHONYGOLD SYMPHONY

Also known as: GOLD SYMPHONY

Known aliases
1

Profile

GOLD SYMPHONY is a financially motivated cybercrime group, likely based in Russia, that is responsible for the development and sale on underground forums of the Buer Loader malware. First discovered around August 2019, Buer Loader is offered as a malware-as-a-service (MasS) and has been advertised by a threat actor using the handle 'memeos'. Customers include GOLD BLACKBURN, the operators of the TrickBot malware. In addition to TrickBot, Buer Loader has been reported to download Cobalt Strike and other tools for use in post-intrusion ransomware attacks.

Aliases· 1

GOLD SYMPHONY

References

  1. http://www.secureworks.com/research/threat-profiles/gold-symphony

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
GOLD WINTER
Actor
GOLD BURLAP
Actor
GOLD MANSARD
Actor
GOLD REBELLION
Actor
GOLD GALLEON
Actor
GOLD CABIN
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.