TgToxic Malware’s Automated Framework Targets Southeast Asia Android Users
Tags
country: Indonesia Thailand Taiwan
maec-delivery-vectors: Watering Hole
attack-pattern: Data Direct Credentials - T1589.001 Email Accounts - T1585.002 Email Accounts - T1586.002 Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Screen Capture - T1513 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Tool - T1588.002 Screen Capture - T1113 Screen Capture
Show in Graph
Common Information
Type Value
UUID b7265a60-cc0d-4bb6-8a2a-30fff336e376
Fingerprint b40789112f178689
Analysis status DONE
Considered CTI value 0
Text language
Published Feb. 3, 2023, midnight
Added to db June 1, 2023, 10:43 a.m.
Last updated Nov. 8, 2024, 12:42 a.m.
Headline TgToxic Malware’s Automated Framework Targets Southeast Asia Android Users
Title TgToxic Malware’s Automated Framework Targets Southeast Asia Android Users
Detected Hints/Tags/Attributes 90/3/14
Source URLs
Redirection Url
Details Source https://www.trendmicro.com/en_us/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_be/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_ph/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_th/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_nl/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_ca/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_ie/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_ae/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_se/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_id/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_gb/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_no/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Details Source https://www.trendmicro.com/en_fi/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
URL Provider
Details Provider Source level domain
Details trendmicro.com www.trendmicro.com
Attributes
Details Type #Events CTI Value
Details Domain 2 
download.tw1988.link
Details Domain 2 
1988.taiwan.gov.tw
Details Domain 2 
down.tw1988.link
Details Domain 2 
api.tw1988.link
Details Domain 2 
test.ja7.site
Details Domain 2 
us.ja7.site
Details Domain 57 
com.google.android
Details Domain 188 
com.android
Details Domain 25 
com.binance.dev
Details File 20 
android.settings
Details File 30 
android.sys
Details File 1 
color.safe
Details File 33 
com.bin
Details Url 2 
https://1988.taiwan.gov.tw