ioc[.]one - OSINT Cyber Threat Intelligence Database

Android banking malware masquerades as Flash Player, targeting large banks and popular social media apps

Tags

country:	Australia Austria Germany France Poland United States Of America
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Model Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Sms Messages - T1636.004 Social Media - T1593.001

Show in Graph

Common Information

Type	Value
UUID	f16f9544-3ccc-4015-9e4a-9967ad8ede1a
Fingerprint	fc3c9dd9883b22cf
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 1, 2016, midnight
Added to db	Jan. 18, 2023, 11:17 p.m.
Last updated	Nov. 6, 2024, 11:05 a.m.
Headline	Android banking malware masquerades as Flash Player, targeting large banks and popular social media apps
Title	Android banking malware masquerades as Flash Player, targeting large banks and popular social media apps
Detected Hints/Tags/Attributes	51/3/124

Source URLs

	Redirection	Url
Details	Source	https://www.fortinet.com/blog/threat-research/android-banking-malware-masquerades-as-flash-player-targeting-large-banks-and-popular-social-media-apps.html

URL Provider

Details	Provider	Source level domain
Details	fortinet.com	www.fortinet.com

Attributes

Details	Type	#Events	Value
Details	Domain	17	com.bankaustria.android
Details	Domain	20	au.com.bankwest.mobile
Details	Domain	16	au.com.ingdirect.android
Details	Domain	21	au.com.nab.mobile
Details	Domain	24	com.commbank.netbank
Details	Domain	17	org.banksa.bank
Details	Domain	20	org.stgeorge.bank
Details	Domain	19	org.westpac.bank
Details	Domain	13	com.ing
Details	Domain	18	com.starfinanz.smob.android
Details	Domain	1	de.adesso.mobile.android
Details	Domain	17	de.comdirect.android
Details	Domain	10	mobile.santander.de
Details	Domain	7	com.arkea.android
Details	Domain	14	com.boursorama.android
Details	Domain	2	com.macif.mobile.application.android
Details	Domain	6	fr.axa
Details	Domain	2	fr.banquepopulaire.cyberplus.pro
Details	Domain	15	fr.lcl.android
Details	Domain	16	mobi.societegenerale.mobile
Details	Domain	16	net.bnpparibas
Details	Domain	16	com.comarch.mobile
Details	Domain	7	pl.bzwbk.mobile.tab
Details	Domain	15	pl.ing
Details	Domain	20	com.akbank.android
Details	Domain	19	com.finansbank.mobile
Details	Domain	17	com.vakifbank.mobile
Details	Domain	19	com.ykb.android
Details	Domain	6	ca.bnc.android
Details	Domain	19	com.chase.sig.android
Details	Domain	16	com.cibc.android.mobi
Details	Domain	14	com.citi
Details	Domain	22	com.coinbase.android
Details	Domain	1	com.creditkarma.mobile
Details	Domain	14	com.discoverfinancial.mobile
Details	Domain	20	com.infonow.bofa
Details	Domain	5	com.jpm.sig.android
Details	Domain	15	com.paypal.android
Details	Domain	9	com.pnc.ecommerce.mobile
Details	Domain	12	com.td
Details	Domain	6	com.transferwise.android
Details	Domain	16	com.usaa.mobile.android
Details	Domain	19	com.wf
Details	Domain	1	chaldear.com
Details	Domain	1	glennuniat.com
Details	File	1	mbanking.php
Details	File	1	netbanking.php
Details	File	1	volksbankmobile.php
Details	File	1	olb.php
Details	File	1	raiffeisen_pay_eyewdg.php
Details	File	5	mobile.php
Details	File	2	android.php
Details	File	1	netbank.php
Details	File	1	bank.php
Details	File	30	com.db
Details	File	1	deutschebank.php
Details	File	14	ing.dib
Details	File	1	mbbr2.php
Details	File	1	dkbpushtan.php
Details	File	1	sbanking.php
Details	File	1	sfinanzstatus.php
Details	File	1	gad.php
Details	File	1	mobil.php
Details	File	1	consorsbank.php
Details	File	1	portalapp.php
Details	File	1	vr.php
Details	File	1	kontostand.php
Details	File	1	finanzassistent.php
Details	File	3	de.php
Details	File	1	ingdirectandroid.php
Details	File	1	cmb.php
Details	File	1	cmso2.php
Details	File	2	clients.php
Details	File	1	moncacf.php
Details	File	1	mobilebanking.php
Details	File	2	bad.php
Details	File	1	accountaccess.php
Details	File	1	toujoursla.php
Details	File	1	peps.php
Details	File	1	creditdunord.php
Details	File	1	monaxa.php
Details	File	1	cyberplus.php
Details	File	2	pro.php
Details	File	1	androidapp.php
Details	File	1	customerarea.php
Details	File	1	groupama.php
Details	File	1	lappli.php
Details	File	1	mescomptes.php
Details	File	1	cbplpat.php
Details	File	1	pekao.php
Details	File	1	raiffeisen.php
Details	File	1	bzwbk24.php
Details	File	7	mobile.tab
Details	File	1	eurobank.php
Details	File	1	ingmobile.php
Details	File	1	mbank.php
Details	File	1	iko.php
Details	File	17	bcpbankingapp.mil
Details	File	1	lenniumpl.php
Details	File	1	akbank_direkt.php
Details	File	1	cepsube.php
Details	File	1	cepsubesi.php
Details	File	1	iscep.php
Details	File	1	halkbank.php
Details	File	1	ziraatmobil.php
Details	File	1	us.php
Details	File	1	mobi.php
Details	File	1	citimobile.php
Details	File	1	fth.php
Details	File	1	godough.php
Details	File	1	mypremiercreditcard.php
Details	File	26	com.inf
Details	File	1	bofa.php
Details	File	1	skrillpayments.php
Details	File	1	westernunion.php
Details	File	1	p2pmobile.php
Details	File	1	tdbank.php
Details	File	1	td.php
Details	File	1	usaa.php
Details	File	1	usbc.php
Details	File	1	wellsfargomobile.php
Details	File	1	doubledutch.rb
Details	File	1	ccapitalmarkets.php
Details	sha256	2	e5df30b41b0c50594c2b77c1d5d6916a9ce925f792c563f692426c2d50aa2524