top of page

Analysis of Malicious Android Software Spread by Sidewinder (APT-Q-39) Using Google Play

Security researchers captured a batch of suspected Android-side attack samples of the SideWinder organization. Sidewinder (APT-Q-39, also known as SideWinder) is an APT organization suspected of having a South Asian background. Its attack activities can be traced back to 2012. The organization mainly targets Pakistan, China, Afghanistan, Nepal, Bangladesh and other countries.


ATT&CK IDS: T1036 - Masquerading, T1071 - Application Layer Protocol, T1081 - Credentials in Files, T1503 - Credentials from Web Browsers, T1119 - Automated Collection, T1022 - Data Encrypted

Read More:

1 view


Commenting has been turned off.
bottom of page