สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency

Report

Home > List all groups > List all tools > List all groups using tool CloudScout

Threat Group Cards: A Threat Actor Encyclopedia

Tool: CloudScout

Names	CloudScout
Category	Malware
Type	Backdoor
Description	(ESET) In this blogpost, we provide a technical analysis of CloudScout, a post-compromise toolset used by Evasive Panda to target a government entity and a religious organization in Taiwan from 2022 to 2023. The CloudScout toolset is capable of retrieving data from various cloud services by leveraging stolen web session cookies. Through a plugin, CloudScout works seamlessly with MgBot, Evasive Panda’s signature malware framework.
Information	<https://www.welivesecurity.com/en/eset-research/cloudscout-evasive-panda-scouting-cloud-services/>
Malpedia	<https://malpedia.caad.fkie.fraunhofer.de/details/win.cloud_scout>

Last change to this tool card: 27 December 2024

Download this tool card in JSON format

All groups using tool CloudScout

Changed	Name	Country	Observed
APT groups
	Bronze Highland		2012-Jul 2024

1 group listed (1 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Report incidents

+66 (0)2-123-1227

[email protected]