G0127

G0127TA551

Description

[TA551](https://attack.mitre.org/groups/G0127) is a financially-motivated threat group that has been active since at least 2018. (Citation: Secureworks GOLD CABIN) The group has primarily targeted English, German, Italian, and Japanese speakers through email-based malware distribution campaigns. (Citation: Unit 42 TA551 Jan 2021)

References

  1. https://attack.mitre.org/groups/G0127
  2. https://unit42.paloaltonetworks.com/valak-evolution/
  3. https://unit42.paloaltonetworks.com/ta551-shathak-icedid/
  4. https://www.secureworks.com/research/threat-profiles/gold-cabin

Software attributed to this1

TypeTargetConfidenceTier
SoftwareSVCReadys106495%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Group
TA505
Group
TA2541
Actor
GOLD CABIN
Group
Threat Group-3390
Group
FIN10
Actor
TA571
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.