S2W TALON analyzed AlphaSeed, a suspected Kimsuky malware family found on VirusTotal in May 2023 and named from the internal path E:/Go_Project/src/alpha/naver_crawl_spy/. The sample is assessed with high confidence as a Go implementation related to AppleSeed because it shares file-encryption behavior, mail-sending threads, mailbox naming, and Kimsuky's prior use of Naver mail command channels such as NavRAT. AlphaSeed copies itself into %USERPROFILE%\.edge, persists through an HKCU Run value using regsvr32, collects keystrokes and screenshots, and exchanges commands and stolen data through Naver Mail using chromedp and cookie-based login rather than embedded credentials. The command flow uses RSA and RC4 to decrypt tasking from a Cmd mailbox and exfiltrates victim metadata and collected data through mail subjects/mailboxes, showing Kimsuky's continued migration of espionage tooling into Go and webmail-based C2.