Eyes on Android/S.O.V.A botnet sample
Tags
attack-pattern: Data Botnet - T1583.005 Botnet - T1584.005 Malware - T1587.001 Malware - T1588.001
Show in Graph
Common Information
Type Value
UUID 425af94a-8257-4b46-ada5-99fc7d05c8f8
Fingerprint ecb1c9202d723847
Analysis status DONE
Considered CTI value 0
Text language
Published July 7, 2023, 2:05 p.m.
Added to db July 7, 2023, 4:32 p.m.
Last updated Nov. 17, 2024, 6:30 p.m.
Headline Eyes on Android/S.O.V.A botnet sample
Title Eyes on Android/S.O.V.A botnet sample
Detected Hints/Tags/Attributes 30/1/15
Source URLs
Redirection Url
Details Source https://cryptax.medium.com/eyes-on-android-s-o-v-a-botnet-sample-fb5ed332d08?source=rss------malware-5
URL Provider
Details Provider Source level domain
Details medium.com cryptax.medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 171 Malware on Medium https://medium.com/feed/tag/malware 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 6 
com.idamob.tinkoff.android
Details Domain 1 
com.nslah.ieg.tzzi.hkb.data.network
Details Domain 454 
www.google.com
Details File 1 
prefsutil.ini
Details File 8 
this.reg
Details File 1 
hkb.dat
Details File 1 
logpost.php
Details File 2 
testpost.php
Details File 2 
keylog.php
Details File 30 
this.log
Details File 3 
ger.log
Details File 1 
cipher0.ini
Details sha256 1 
c1642ac3f729701223043b16ac2c6c5f64adc7080f474c181067b0f1335218f2
Details Url 1 
http://re184edek1nslloaj1fhdskl13asdrf.xyz/api?method=bots.new
Details Url 1 
http://re184edek1nslloaj1fhdskl13asdrf.xyz/").addconverterfactory(gsonconverterfactory.create()).build().create(serverapi.class