PingPull (4360cc62-7263-48b2-bd2a-a7737563545c)
PingPull is a remote access Trojan (RAT) written in Visual C++ that has been used by GALLIUM since at least June 2022. PingPull has been used to target telecommunications companies, financial institutions, and government entities in Afghanistan, Australia, Belgium, Cambodia, Malaysia, Mozambique, the Philippines, Russia, and Vietnam.[Unit 42 PingPull Jun 2022]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| PingPull (4360cc62-7263-48b2-bd2a-a7737563545c) | Tidal Software | GALLIUM (15ff1ce0-44f0-4f1d-a4ef-83444570e572) | Tidal Groups | 1 |