FurBall (Malware Family)

FurBall

According to Check Point, they uncovered an operation dubbed "Domestic Kitten", which uses malicious Android applications to steal sensitive personal information from its victims: screenshots, messages, call logs, surrounding voice recordings, and more. This operation managed to remain under the radar for a long time, as the associated files were not attributed to a known malware family and were only detected by a handful of security vendors.

References

2022-10-20 ⋅ Bleeping Computer ⋅ Bill Toulas
Hacking group updates Furball Android spyware to evade detection
FurBall

2021-02-08 ⋅ Checkpoint ⋅ Check Point Research
Domestic Kitten – An Inside Look at the Iranian Surveillance Operations
FurBall Domestic Kitten

2019-11-18 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
Surprised by Julius the Great! Disclosure of Cyrus attacks against Iran
FurBall

2019-10-02 ⋅ Virus Bulletin ⋅ Aseel Kayal, Lotem Finkelstein
Domestic Kitten: an Iranian surveillance program
FurBall

2019-06-18 ⋅ Trend Micro ⋅ Ecular Xu, Grey Guo
Mobile Campaign ‘Bouncing Golf’ Affects Middle East (IoCs)
FurBall

2019-06-18 ⋅ Trend Micro ⋅ Ecular Xu, Grey Guo
Mobile Campaign ‘Bouncing Golf’ Affects Middle East
FurBall Domestic Kitten

2018-09-07 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Domestic Kitten APT Operates in Silence Since 2016
FurBall Domestic Kitten

There is no Yara-Signature yet.

FurBall Propose Change

References

FurBall