ioc[.]one - OSINT Cyber Threat Intelligence Database

HummingBad: A Persistent Mobile Chain Attack - Check Point Software

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Credentials - T1589.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Rootkit - T1014 Rootkit

Show in Graph

Common Information

Type	Value
UUID	ce690233-e80c-452f-bd69-0a0896d47f36
Fingerprint	a5a5b589ac7b2693
Analysis status	DONE
Considered CTI value	0
Text language
Published	Feb. 4, 2016, 7:35 p.m.
Added to db	Jan. 18, 2023, 8:16 p.m.
Last updated	Nov. 8, 2024, 9:33 a.m.
Headline	HummingBad: A Persistent Mobile Chain Attack
Title	HummingBad: A Persistent Mobile Chain Attack - Check Point Software
Detected Hints/Tags/Attributes	37/2/30

Source URLs

	Redirection	Url
Details	Source	https://blog.checkpoint.com/2016/02/04/hummingbad-a-persistent-mobile-chain-attack/

URL Provider

Details	Provider	Source level domain
Details	checkpoint.com	blog.checkpoint.com

Attributes

Details	Type	#Events	Value
Details	Domain	188	com.android
Details	Domain	67	www.checkpoint.com
Details	Domain	1	manage.hummerlauncher.com
Details	Domain	1	cdn.sh-jxzx.com
Details	Domain	1	fget.guangbom.com
Details	Domain	1	d2b7xycc4g1w1e.cloudfront.net
Details	Domain	1	getsspdownurl.do
Details	File	1	right_core.apk
Details	File	1	support.bmp
Details	File	1	module_encrypted.jar
Details	File	1	1435636098822.apk
Details	Url	1	http://manage.hummerlauncher.com
Details	Url	1	http://cdn.sh-jxzx.com/z/u/apk
Details	Url	1	http://fget.guangbom.com
Details	Url	1	http://d2b7xycc4g1w1e.cloudfront.net
Details	Url	1	http://manage.hummerlauncher.com:10010/c/40
Details	Url	1	http://manage.hummerlauncher.com:10010/c/39
Details	Url	1	http://manage.hummerlauncher.com:10010/c/43
Details	Url	1	http://manage.hummerlauncher.com:10010/c/50
Details	Url	1	http://manage.hummerlauncher.com:10010/c/51
Details	Url	1	http://manage.hummerlauncher.com:10010/c/53
Details	Url	1	http://manage.hummerlauncher.com:10010/c/61
Details	Url	1	http://manage.hummerlauncher.com:10010/c/44
Details	Url	1	http://manage.hummerlauncher.com:10010/c/31
Details	Url	1	http://manage.hummerlauncher.com:10010/c/29
Details	Url	1	http://manage.hummerlauncher.com:10010/c/30
Details	Url	1	http://cdn.sh-jxzx.com/z/u/apk/sn-sdk-5002.apk
Details	Url	1	http://fget.guangbom.com:7012/getsspdownurl.do?cid=118
Details	Url	1	http://d2b7xycc4g1w1e.cloudfront.net/upload/apk/1435636098822.apk
Details	Url	1	http://fget.guangbom.com:7012/getsspdownurl.do?cid=119