GOLD SOUTHFIELD is a financially motivated cybercriminal threat group that authors and operates the REvil (aka Sodinokibi) ransomware on behalf of var...

Threat Actor Profile

GOLD SOUTHFIELD

Uses 12 known MITRE ATT&CK techniques.

12 TTPs Mapped Real-Time Alerts

Actor Overview

Known Techniques
12 TTPs

MITRE ATT&CK Techniques

T1059T1059.001T1190T1133T1027T1027.010T1566T1219T1113T1195T1195.002T1199

Related Threat Reports

Premium
APT Campaign Analysis - Q4 2025Dec 2025
New Tactics Observed in WildDec 2025
Infrastructure Mapping ReportDec 2025
Stay Updated

Get alerts when new intel on GOLD SOUTHFIELD is published.

Actor Details

Primary Name
GOLD SOUTHFIELD
Data Source
Precursor Intelligence
Need API Access?

Integrate threat actor data into your SIEM or SOAR.

View Plans →