GoldDigger

GoldDigger Android banking trojan 2023 Asia-Pacific. ktbcs.net C2. Jenkins CI /var/jenkins_home PDB. Face recognition.

Threat Profile
Type RAT
Programming LanguageJava/C++
C2 ProtocolHTTPS
First Seen2023
Targets Vietnam/Tayland/Endonezya
Purpose / Capabilities
  • Banking Credential Theft

C2 Servers 1

Address Port Protocol Status Action
ktbcs.net
443 HTTPS INACTIVE

⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.

Research Reports (1)

High

GoldDigger Android -- ktbcs.net C2, Jenkins CI /var/jenkins_home PDB, remoteEncrypt businessPlugins | Yüksek

GoldDigger Android 185KB ktbcs.net C2. /var/jenkins_home/workspace/remoteEncrypt Jenkins CI PDB. businessPlugins StrategyUtils.

Read Report →