adulau/misp-circl-feed
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Packages Wiki Activity Actions
misp-circl-feed/feeds/circl/misp/5c35f6b7-0360-430d-a564-4b22950d210f.json

1 line
No EOL
2.6 KiB
JSON
Raw Blame History

{"Event": {"info": "OSINT - Adware Disguised as Game, TV, Remote Control Apps Infect 9 Million Google Play Users", "Tag": [{"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#00aacf", "exportable": true, "name": "veris:action:malware:variety=\"Adware\""}, {"colour": "#386400", "exportable": true, "name": "malware_classification:malware-category=\"Adware\""}, {"colour": "#2a0035", "exportable": true, "name": "ms-caro-malware:malware-type=\"Adware\""}, {"colour": "#38af00", "exportable": true, "name": "enisa:nefarious-activity-abuse=\"spyware-or-deceptive-adware\""}, {"colour": "#001533", "exportable": true, "name": "ms-caro-malware-full:malware-type=\"Adware\""}, {"colour": "#00223b", "exportable": true, "name": "osint:source-type=\"blog-post\""}, {"colour": "#72003d", "exportable": true, "name": "workflow:todo=\"add-missing-misp-galaxy-cluster-values\""}], "publish_timestamp": "0", "timestamp": "1547046426", "analysis": "0", "Attribute": [{"comment": "", "category": "External analysis", "uuid": "5c35f710-e368-4f58-86b1-4d81950d210f", "timestamp": "1547040828", "to_ids": false, "value": "https://blog.trendmicro.com/trendlabs-security-intelligence/adware-disguised-as-game-tv-remote-control-apps-infect-9-million-google-play-users/", "Tag": [{"colour": "#00223b", "exportable": true, "name": "osint:source-type=\"blog-post\""}], "disable_correlation": false, "object_relation": null, "type": "link"}, {"comment": "", "category": "External analysis", "uuid": "5c35f821-8630-403a-93fe-48c0950d210f", "timestamp": "1547040827", "to_ids": false, "value": "Adware is bothersome, disruptive, and have been around for a long time, but they\u2019re still around. In fact, we recently discovered an active adware family (detected by Trend Micro as AndroidOS_HidenAd) disguised as 85 game, TV, and remote control simulator apps on the Google Play store. This adware is capable of displaying full-screen ads, hiding itself, monitoring a device\u2019s screen unlocking functionality, and running in the mobile device\u2019s background. The 85 fake apps, which have been downloaded a total of 9 million times around the world. After verifying our report, Google swiftly suspended the fake apps from the Play store.", "Tag": [{"colour": "#00223b", "exportable": true, "name": "osint:source-type=\"blog-post\""}], "disable_correlation": false, "object_relation": null, "type": "text"}], "extends_uuid": "", "published": false, "date": "2019-01-08", "Orgc": {"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f", "name": "CIRCL"}, "threat_level_id": "3", "uuid": "5c35f6b7-0360-430d-a564-4b22950d210f"}}
Reference in a new issue View git blame Copy permalink