Lookout Discovers Android Spyware Tied to Iranian Police Targeting Minorities: BouldSpy
Tags
| country: | Iran |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Botnet - T1583.005 Botnet - T1584.005 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Sms Messages - T1636.004 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | b6639e40-3f70-44d1-aca3-860ac2692a35 |
| Fingerprint | b738581685b6b6c1 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | April 27, 2023, midnight |
| Added to db | June 5, 2023, 12:15 p.m. |
| Last updated | Nov. 8, 2024, 12:42 a.m. |
| Headline | Lookout Discovers Android Spyware Tied to Iranian Police Targeting Minorities: BouldSpy |
| Title | Lookout Discovers Android Spyware Tied to Iranian Police Targeting Minorities: BouldSpy |
| Detected Hints/Tags/Attributes | 64/3/30 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://security.lookout.com/blog/iranian-spyware-bouldspy |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 328 | ✔ | Lookout Blogs | https://www.lookout.com/blog/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 188 | com.android |
|
| Details | Domain | 246 | mail.ru |
|
| Details | sha1 | 2 | 5168610b73f50661b998e95a74be25bfe749b6ef |
|
| Details | sha1 | 2 | af999714aec75a64529c59f1e8de4c669adfa97a |
|
| Details | sha1 | 2 | 965d118cb80ccdbc6e95e530a314cb4b85ae1b42 |
|
| Details | sha1 | 3 | f3b135555ae731b5499502f3b69724944ab367d5 |
|
| Details | sha1 | 2 | 02ac97b090a6b2a1b14bad839deec7d966f5642c |
|
| Details | sha1 | 2 | da3c0cfd432b53a602ce7dc5165848b88411d9c9 |
|
| Details | sha1 | 2 | 75a6c724f43168346b177a60c81ca179a436246f |
|
| Details | sha1 | 2 | 08fd24e4514793b29b7bd2c29f9e5c15ffc9bada |
|
| Details | sha1 | 2 | 73c93be188f88755ed690266063223e141fdb9ff |
|
| Details | sha1 | 2 | 7537ac1658100efaf6558eed4a3f732208b393ab |
|
| Details | sha1 | 2 | 7208dc915a800fe5c5eaf599084147a8afeba991 |
|
| Details | sha1 | 2 | 8afc495b6632ce9ef812a971f71ae82d39d7e7e9 |
|
| Details | sha1 | 2 | 43f5506b960914ab76ffaf531cdd51dd86df22f2 |
|
| Details | sha1 | 2 | dd66dcb8db678d10f9589a12745ec2e575e4f5eb |
|
| Details | sha1 | 2 | 69894818ba1dc8bfffe9fb384abf77d991379aaa |
|
| Details | sha1 | 2 | db650b0eaffa21b63ce84d31b2bd09720da9491e |
|
| Details | sha1 | 3 | 67a3def7ad736df94c8c50947f785c0926142b69 |
|
| Details | sha1 | 2 | 63ff362f58c7b6dec8ea365a5dbc6a88ec09dacf |
|
| Details | sha1 | 3 | bc826967c90acc08f1f70aa018f5d13f31521b92 |
|
| Details | sha1 | 2 | 02c4969c45fd7ac913770f9db075eadf9785d3a7 |
|
| Details | sha1 | 2 | 5446e0cf2de0a888571ef1d521b9ada7b34ef33e |
|
| Details | sha1 | 2 | 43a92743c8264a8d06724ab80139c0d31e8292ee |
|
| Details | IPv4 | 3 | 192.99.251.51 |
|
| Details | IPv4 | 5 | 192.99.251.50 |
|
| Details | IPv4 | 2 | 192.99.251.49 |
|
| Details | IPv4 | 2 | 192.99.251.54 |
|
| Details | IPv4 | 3 | 84.234.96.117 |
|
| Details | IPv4 | 2 | 149.56.92.127 |