SideWinder (Malware Family)

SYMBOL	COMMON_NAME	aka. SYNONYMS

apk.sidewinder (Back to overview)

SideWinder

Actor(s): RAZOR TIGER

SideWinder involved a fake VPN app for Android devices published on Google Play Store along with a custom tool that filters victims for better targeting.

References

2023-05-17 ⋅ Group-IB ⋅ Joshua Penny, Nikita Rostovtsev, Yashraj Solanki
The distinctive rattle of APT SideWinder
SideWinder

2022-07-20 ⋅ ⋅ Qianxin ⋅ Red Raindrops Team
The Sidewinder (APT-Q-39) uses Google Play to spread an analysis of malicious Android software
SideWinder

There is no Yara-Signature yet.

SideWinder Propose Change

References

SideWinder