TA551
Aliases: GOLD CABIN, Shathak
TA551 is a financially-motivated threat group that has been active since at least 2018. The group has primarily targeted English, German, Italian, and Japanese speakers through email-based malware distribution campaigns.
Open interactive actor investigation
ATT&CK techniques
T1218.010
Regsvr32T1589.002
Email AddressesT1204.002
Malicious FileT1218.011
Rundll32T1027.003
SteganographyT1566.001
Spearphishing AttachmentT1132.001
Standard EncodingT1568.002
Domain Generation AlgorithmsT1027.010
Command ObfuscationT1071.001
Web ProtocolsT1105
Ingress Tool TransferT1218.005
MshtaT1059.003
Windows Command ShellT1036
Masquerading
Regsvr32T1589.002
Email AddressesT1204.002
Malicious FileT1218.011
Rundll32T1027.003
SteganographyT1566.001
Spearphishing AttachmentT1132.001
Standard EncodingT1568.002
Domain Generation AlgorithmsT1027.010
Command ObfuscationT1071.001
Web ProtocolsT1105
Ingress Tool TransferT1218.005
MshtaT1059.003
Windows Command ShellT1036
Masquerading