SYMBOLCOMMON_NAMEaka. SYNONYMS
apk.monokle (Back to overview)

Monokle


Monokle is a sophisticated mobile surveillanceware that possesses remote access trojan (RAT) functionality, advanced data exfiltration techniques as well as the ability to install an attacker-specified certificate to the trusted certificates on an infected device that would allow for man-in-the-middle (MITM) attacks.
According to Lookout researchers, It is believed to be developed by Special Technology Center (STC), which is a Russian defense contractor sanctioned by the U.S. Government in connection to alleged interference in the 2016 US presidential elections.

References
2019-07-01LookoutLookout
Monokle: The Mobile Surveillance Tooling of the Special Technology Center
Monokle

There is no Yara-Signature yet.