{"Event":{"info":"OSINT - ExpensiveWall: A Dangerous \u2018Packed\u2019 Malware On Google Play That Will Hit Your Wallet","Tag":[{"colour":"#850048","exportable":true,"name":"workflow:todo=\"create-missing-misp-galaxy-cluster-values\""},{"colour":"#ffffff","exportable":true,"name":"tlp:white"},{"colour":"#366c00","exportable":true,"name":"circl:incident-classification=\"malware\""},{"colour":"#00223b","exportable":true,"name":"osint:source-type=\"blog-post\""},{"colour":"#211c1c","exportable":true,"name":"Android Malware"},{"colour":"#001a40","exportable":true,"name":"ms-caro-malware-full:malware-platform=\"AndroidOS\""}],"publish_timestamp":"0","timestamp":"1521801934","analysis":"2","Attribute":[{"comment":"","category":"External analysis","uuid":"5ab3a11a-eb88-4eaf-a957-49ed950d210f","timestamp":"1521798608","to_ids":false,"value":"https://blog.checkpoint.com/2017/09/14/expensivewall-dangerous-packed-malware-google-play-will-hit-wallet/","Tag":[{"colour":"#00223b","exportable":true,"name":"osint:source-type=\"blog-post\""}],"disable_correlation":false,"object_relation":null,"type":"link"},{"comment":"","category":"External analysis","uuid":"5ab4cd58-4958-4837-a557-42e4950d210f","timestamp":"1521798599","to_ids":false,"value":"Check Point\u2019s mobile threat research team identified a new variant of an Android malware that sends fraudulent premium SMS messages and charges users\u2019 accounts for fake services without their knowledge. According to Google Play data, the malware infected at least 50 apps and was downloaded between 1 million and 4.2 million times before the affected apps were removed.\r\n\r\nThe new strain of malware is dubbed \u201cExpensiveWall,\u201d after one of the apps it uses to infect devices, \u201cLovely Wallpaper.\u201d ExpensiveWall is a new variant of a malware found earlier this year on Google Play. The entire malware family has now been downloaded between 5.9 million and 21.1 million times.","Tag":[{"colour":"#00223b","exportable":true,"name":"osint:source-type=\"blog-post\""}],"disable_correlation":false,"object_relation":null,"type":"comment"},{"comment":"I Love Fliter","category":"Payload delivery","uuid":"5ab4d044-e6cc-4e5f-933d-43c7950d210f","timestamp":"1521799236","to_ids":true,"value":"com.star.trek","disable_correlation":false,"object_relation":null,"type":"filename"},{"comment":"Tool Box Pro","category":"Payload delivery","uuid":"5ab4d045-db54-4a40-b87c-485a950d210f","timestamp":"1521799237","to_ids":true,"value":"com.newac.toolbox","disable_correlation":false,"object_relation":null,"type":"filename"},{"comment":"X WALLPAPER","category":"Payload delivery","uuid":"5ab4d045-ec04-457a-adaf-4164950d210f","timestamp":"1521799237","to_ids":true,"value":"com.newac.wallpaper","disable_correlation":false,"object_relation":null,"type":"filename"},{"comment":"Horoscope","category":"Payload delivery","uuid":"5ab4d046-a57c-4788-bb38-4c9c950d210f","timestamp":"1521799238","to_ids":true,"value":"com.yeahmobi.horoscopeinter","disable_correlation":false,"object_relation":null,"type":"filename"},{"comment":"X Wallpaper Pro","category":"Payload delivery","uuid":"5ab4d046-83ec-4409-8fde-497e950d210f","timestamp":"1521799238","to_ids":true,"value":"com.gkt.xwallpaper","disable_correlation":false,"object_relation":null,"type":"filename"},{"comment":"Beautiful Camera","category":"Payload delivery","uuid":"5ab4d047-be04-4020-bacd-498d950d210f","timestamp":"1521799239","to_ids":true,"value":"com.gwqcv.zsfy","disable_correlation":false,"object_relation":null,"type":"filename"},{"comment":"Color Camera","category":"Payload delivery","uuid":"5ab4d047-4d5c-4770-87f3-48ef950d210f","timestamp":"1521799239","to_ids":true,"value":"com.hdsj.hdey","disable_correlation":false,"object_relation":null,"type":"filename"},{"comment":"Love Photo","category":"Payload delivery","uuid":"5ab4d048-1f
