SYMBOLCOMMON_NAMEaka. SYNONYMS
apk.unidentified_005 (Back to overview)

Unidentified APK 005

Actor(s): APT-C-35


There is no description at this point.

References
2021-04-21Cybleinccybleinc
@online{cybleinc:20210421:donot:3c9e847, author = {cybleinc}, title = {{Donot Team APT Group Is Back To Using Old Malicious Patterns}}, date = {2021-04-21}, organization = {Cybleinc}, url = {https://cybleinc.com/2021/04/21/donot-team-apt-group-is-back-to-using-old-malicious-patterns/}, language = {English}, urldate = {2021-04-28} } Donot Team APT Group Is Back To Using Old Malicious Patterns
Unidentified APK 005
2020-10-30360 Core Security360
@online{360:20201030:aptc35:0c53f1a, author = {360}, title = {{肚脑虫组织( APT-C-35)疑似针对巴基斯坦军事人员的最新攻击活动}}, date = {2020-10-30}, organization = {360 Core Security}, url = {https://blogs.360.cn/post/APT-C-35_target_at_armed_forces_in_Pakistan.html}, language = {Chinese}, urldate = {2020-11-02} } 肚脑虫组织( APT-C-35)疑似针对巴基斯坦军事人员的最新攻击活动
Unidentified APK 005
2020-10-29Cisco TalosWarren Mercer, Paul Rascagnères, Vitor Ventura
@online{mercer:20201029:donots:850f31b, author = {Warren Mercer and Paul Rascagnères and Vitor Ventura}, title = {{DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread}}, date = {2020-10-29}, organization = {Cisco Talos}, url = {https://blog.talosintelligence.com/2020/10/donot-firestarter.html}, language = {English}, urldate = {2020-10-29} } DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread
Unidentified APK 005
2020-09-30RiskIQJon Gross
@online{gross:20200930:diving:8e26441, author = {Jon Gross}, title = {{Diving Into DONOT's Mobile Rabbit Hole}}, date = {2020-09-30}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/6f60db72}, language = {English}, urldate = {2020-10-04} } Diving Into DONOT's Mobile Rabbit Hole
Unidentified APK 005
2020-06-01Twitter (@voodoodahl1)Matt Dahl
@online{dahl:20200601:malware:aa6f2ab, author = {Matt Dahl}, title = {{Tweet on malware called knspy used by Donot}}, date = {2020-06-01}, organization = {Twitter (@voodoodahl1)}, url = {https://twitter.com/voodoodahl1/status/1267571622732578816}, language = {English}, urldate = {2020-06-04} } Tweet on malware called knspy used by Donot
Unidentified APK 005
2020-04-08TencentTencent
@online{tencent:20200408:donot:58c3513, author = {Tencent}, title = {{Donot team organization (APT-C-35) mobile terminal attack activity analysis}}, date = {2020-04-08}, organization = {Tencent}, url = {https://s.tencent.com/research/report/951.html}, language = {Chinese}, urldate = {2020-05-05} } Donot team organization (APT-C-35) mobile terminal attack activity analysis
Unidentified APK 005

There is no Yara-Signature yet.