gokcpdoor

According to LAC, this malware is written in Go and was observed in 2022 used by an unknown China-based APT across several incidents in Japan. This backdoor has 20 commands and connects with C2 servers via KCP over UDP.

Family metadata imported from Malpedia (Fraunhofer FKIE).