Fake Security App Found Abuses Japanese Payment System | McAfee Blog
Tags
country: France Japan
attack-pattern: Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Sms Messages - T1636.004 Software - T1592.002 Connection Proxy - T1090
Show in Graph
Common Information
Type Value
UUID 5602c610-9ae8-45d1-a044-9ed292b7684a
Fingerprint 8d37b529c9622283
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 30, 2022, 6:41 p.m.
Added to db Nov. 6, 2023, 7:11 p.m.
Last updated Dec. 18, 2024, 10:17 p.m.
Headline Fake Security App Found Abuses Japanese Payment System
Title Fake Security App Found Abuses Japanese Payment System | McAfee Blog
Detected Hints/Tags/Attributes 35/2/12
Source URLs
Redirection Url
Details Source https://www.mcafee.com/blogs/other-blogs/mcafee-labs/fake-security-app-found-abuses-japanese-payment-system/
URL Provider
Details Provider Source level domain
Details mcafee.com www.mcafee.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 333 https://www.mcafee.com/blogs/other-blogs/mcafee-labs/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 2 
cloud.px.app
Details Domain 2 
libmyapp.so
Details Domain 2 
ruboq.com
Details Domain 7 
com.de
Details sha256 2 
5d29dd12faaafd40300752c584ee3c072d6fc9a7a98a357a145701aaa85950dd
Details sha256 2 
e133be729128ed6764471ee7d7c36f2ccb70edf789286cc3a834e689432fc9b0
Details sha256 2 
e7948392903e4c8762771f12e2d6693bf3e2e091a0fc88e91b177a58614fef02
Details sha256 2 
3971309ce4a3cfb3cdbf8abde19d46586f6e4d5fc9f54c562428b0e0428325ad
Details sha256 2 
2ec2fb9e20b99f60a30aaa630b393d8277949c34043ebe994dd0ffc7176904a4
Details sha256 2 
af0d2e5e2994a3edd87f6d0b9b9a85fb1c41d33edfd552fcc64b43c713cdd956
Details IPv4 2 
193.239.154.23
Details IPv4 3 
91.204.227.132