Malpedia Library

2024-02-19 ⋅ Fortinet ⋅ Axelle Apvrille
Android/SpyNote bypasses Restricted Settings + breaks many RE tools
SpyNote

2024-02-15 ⋅ Fortinet ⋅ Axelle Apvrille
Android/SpyNote Moves to Crypto Currencies
SpyNote

2023-12-18 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Organizing malware analysis with Colander: example on Android/WyrmSpy
WyrmSpy

2023-12-14 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Bad Zip and new Packer for Android/BianLian
BianLian

2023-07-07 ⋅ Medium cryptax ⋅ Axelle Apvrille
Eyes on Android/S.O.V.A botnet sample
S.O.V.A.

2023-06-23 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Inside KangaPack: the Kangaroo packer with native decryption
FluHorse

2023-06-21 ⋅ Fortinet ⋅ Axelle Apvrille
Fortinet Reverses Flutter-based Android Malware “Fluhorse”
FluHorse

2022-10-24 ⋅ Youtube (Virus Bulletin) ⋅ Axelle Apvrille
Hunting the AndroidBianLian botnet
BianLian

2022-06-27 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Unpacking a JsonPacker-packed sample
Xenomorph

2022-06-20 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Tracking Android/Joker payloads with Medusa, static analysis (and patience)
Joker

2022-06-09 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Quick look into a new sample of Android/BianLian
BianLian Hydra

2022-05-12 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Reversing an Android sample which uses Flutter

2022-04-29 ⋅ Fortinet ⋅ Axelle Apvrille
Warning: GRIM and Magnus Android Botnets are Underground

2022-03-08 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Live reverse engineering of a trojanized medical app — Android/Joker
Joker

2022-01-25 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
BianLian C&C domain name
BianLian Hydra

2022-01-21 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Creating a safe dummy C&C to test Android bots
BianLian Hydra

2022-01-17 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Android/BianLian payload
BianLian Hydra

2022-01-14 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Multidex trick to unpack Android/BianLian
BianLian

2021-05-18 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
A native packer for Android/MoqHao
MoqHao

2021-03-29 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Android/Flubot: preparing for a new campaign?
FluBot

2020-12-15 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Unpacking an Android malware with Dexcalibur and JEB

2020-12-13 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Decrypting strings with a JEB script

2020-09-25 ⋅ Medium cryptax ⋅ Axelle Apvrille
Into Android Meterpreter and how the malware launches it - part 2
Meterpreter

2020-09-18 ⋅ Medium cryptax ⋅ Axelle Apvrille
Locating the Trojan inside an infected COVID-19 contact tracing app
Meterpreter

2017-03-15 ⋅ Fortinet ⋅ Axelle Apvrille
Teardown of Android/Ztorg (Part 2)
Ztorg

2017-03-15 ⋅ Fortinet ⋅ Axelle Apvrille
Teardown of a Recent Variant of Android/Ztorg (Part 1)
Ztorg