← Back to Actors
GOLD SOUTHFIELD
GOLD SOUTHFIELDPinchy Spider
[GOLD SOUTHFIELD](https://attack.mitre.org/groups/G0115) is a financially motivated threat group active since at least 2018 that operates the [REvil](https://attack.mitre.org/software/S0496) Ransomware-as-a Service (RaaS). [GOLD SOUTHFIELD](https://attack.mitre.org/groups/G0115) provides backend infrastructure for affiliates recruited on underground forums to perpetrate high value deployments. By early 2020, [GOLD SOUTHFIELD](https://attack.mitre.org/groups/G0115) started capitalizing on the new trend of stealing data and further extorting the victim to pay for their data to not get publicly l...
9
Techniques
9
Covered
0
Gaps
100%
Coverage
Coverage9/9
COVERED (9)
T1027.010Command Obfuscation31 det.T1059.001PowerShell338 det.T1113Screen Capture17 det.T1133External Remote Services72 det.T1190Exploit Public-Facing Application208 det.T1195.002Compromise Software Supply Chain23 det.T1199Trusted Relationship6 det.T1219Remote Access Tools33 det.T1566Phishing920 det.