top of page
Search
Writer's pictureStormsec

Analysis of Malicious Android Software Spread by Sidewinder (APT-Q-39) Using Google Play

Security researchers captured a batch of suspected Android-side attack samples of the SideWinder organization. Sidewinder (APT-Q-39, also known as SideWinder) is an APT organization suspected of having a South Asian background. Its attack activities can be traced back to 2012. The organization mainly targets Pakistan, China, Afghanistan, Nepal, Bangladesh and other countries.




ADVERSARY: SideWinder



ATT&CK IDS: T1036 - Masquerading, T1071 - Application Layer Protocol, T1081 - Credentials in Files, T1503 - Credentials from Web Browsers, T1119 - Automated Collection, T1022 - Data Encrypted


Read More:

3 views

Kommentare


Die Kommentarfunktion wurde abgeschaltet.
bottom of page