Malware written in Go programming language has roots almost a decade ago, few years after its first public release back in 2009: starting, for instance, from InfoStealer samples discovered since 2012, abused in cyber-criminal campaigns, and ending into one of the most advanced and modern cyber arsenal, the Sofacy one. Times ago it was considered an exotic way to code a malware, nowadays it became something more common most of the CSIRTs encountered at least once in their lifetime.

https://blog.yoroi.company/research/gobrut-a-new-golang-botnet/