SYMBOLCOMMON_NAMEaka. SYNONYMS
apk.888_rat (Back to overview)

888 RAT

According to ESET, this is a commercial, multiplatform RAT, originally developed for Windows and extended to Android. In short, it can steal and delete files from a device, take screenshots, get device location, phish Facebook credentials, get a list of installed apps, steal user photos, take photos, record surrounding audio and phone calls, make calls, steal SMS messages, steal the device’s contact list, send text messages, etc.

References
2021-09-07ESET ResearchLukáš Štefanko
BladeHawk group: Android espionage against Kurdish ethnic group
888 RAT BladeHawk Kasablanka

There is no Yara-Signature yet.