LevelBlue SpiderLabs threat hunting experts investigate a malware campaign targeting corporations operating in China. This report identifies a new threat and provides specific hunting, investigative, and remediation methodologies that can be used to help ensure your environment is clean.
Use this information to empower your organization, if you have operations in China or are planning to start operations there, to fight this unattributed threat actor group today, with sections covering:
The Golden Tax Department and Emergence of GoldenSpy Malware
Associated Indicators of Compromise (IOC’s) and IOC’s associated with the network architecture used with this threat
Malware analysis and malware reverse engineering reports
