ioc[.]one - OSINT Cyber Threat Intelligence Database

Red Alert 2.0: Android Trojan targets security-seekers

Tags

attack-pattern:

Show in Graph

Common Information

Type	Value
UUID	ddc9501b-df42-43cd-a314-623e8899d217
Fingerprint	f18cb9a3897732d1
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 23, 2018, 4:28 p.m.
Added to db	Sept. 26, 2022, 9:32 a.m.
Last updated	Oct. 15, 2024, 9:44 a.m.
Headline	Red Alert 2.0: Android Trojan targets security-seekers
Title	Red Alert 2.0: Android Trojan targets security-seekers
Detected Hints/Tags/Attributes	54/1/26

Source URLs

	Redirection	Url
Details	Source	https://news.sophos.com/en-us/2018/07/23/red-alert-2-0-android-trojan-targets-security-seekers/

URL Provider

Details	Provider	Source level domain
Details	sophos.com	news.sophos.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	free-vpn.download
Details	Domain	1	free-androidvpn.date
Details	Domain	1	free-androidvpn.download
Details	Domain	1	free-androidvpn.online
Details	Domain	1	free-vpn.date
Details	Domain	1	free-vpn.online
Details	File	35	strings.xml
Details	File	1	free-androidvpn.dat
Details	File	1	free-vpn.dat
Details	sha256	1	55292a4dde8727faad1c40c914cf1be9dfdcf4e67b515aa593bcd8d86e824372
Details	sha256	1	be92a751e5abbcd24151b509dbb4feb98ea46f367a99d6f86ed4a7c162461e31
Details	sha256	1	5c4d666cef84abc2a1ffd3b1060ef28fa3c6c3bb4fad1fa26db99350b41bea4c
Details	sha256	1	06081ab7faa729e33b9397a0e47548e75cbec3d43c50e6368e81d737552150a5
Details	sha256	1	753999cb19a4346042f973e30cf1158c44f2335ab65859d3bfa16bca4098e2ef
Details	IPv4	1	103.239.30.126
Details	IPv4	1	146.185.241.29
Details	IPv4	1	146.185.241.42
Details	IPv4	1	185.126.200.3
Details	IPv4	1	185.126.200.12
Details	IPv4	1	185.126.200.15
Details	IPv4	1	185.126.200.18
Details	IPv4	1	185.165.28.15
Details	IPv4	1	185.243.243.241
Details	IPv4	1	185.243.243.244
Details	IPv4	1	185.243.243.245
Details	IPv4	1	167.99.176.61