GoldDigger
GoldDigger Android banking trojan 2023 Asia-Pacific. ktbcs.net C2. Jenkins CI /var/jenkins_home PDB. Face recognition.
Threat Profile
Type
RAT
Programming LanguageJava/C++
C2 ProtocolHTTPS
First Seen2023
Targets
Vietnam/Tayland/Endonezya
Purpose / Capabilities
- Banking Credential Theft
C2 Servers 1
| Address | Port | Protocol | Status | Action |
|---|---|---|---|---|
ktbcs.net
|
443 | HTTPS | INACTIVE |
⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.
Research Reports (1)
GoldDigger Android -- ktbcs.net C2, Jenkins CI /var/jenkins_home PDB, remoteEncrypt businessPlugins | Yüksek
GoldDigger Android 185KB ktbcs.net C2. /var/jenkins_home/workspace/remoteEncrypt Jenkins CI PDB. businessPlugins StrategyUtils.
Read Report →