Names | GoldDigger | |
Category | Malware | |
Type | Banking trojan | |
Description | (Group-IB) Codenamed GoldDigger by Group-IB’s Threat Intelligence unit, the Trojan has been active since at least June 2023. The malicious application impersonates a Vietnamese government portal and an energy company and abuses the Android Accessibility service to extract personal information, steal banking app credentials, intercept SMS messages, and perform various user actions. The number of infected devices and the amount stolen remains unknown. | |
Information | <https://www.group-ib.com/media-center/press-releases/golddigger-trojan-vietnam/> | |
Malpedia | <https://malpedia.caad.fkie.fraunhofer.de/details/apk.gold_digger> |
Last change to this tool card: 07 March 2024
Download this tool card in JSON format
Changed | Name | Country | Observed | ||
Unknown groups | |||||
_[ Interesting malware not linked to an actor yet ]_ |
1 group listed (0 APT, 0 other, 1 unknown)
Digital Service Security Center Follow us on |
Report incidents |
|
+66 (0)2-123-1227 | ||
[email protected] |