Trusted Design

Android banking malware masquerades as Flash Player

概要

Active users of mobile banking apps should be aware of a new Android banking malware campaign targeting customers of large banks in the United States, Germany, France, Australia, Turkey, Poland, and Austria. This banking malware can steal login credentials from 94 different mobile banking apps. Due to its ability to intercept SMS communications, the malware is also able to bypass SMS-based two-factor authentication. Additionally, it also contains modules to target some popular social media apps.

Created: 2026-02-23

Indicators

類似Pulses

Android banking trojan as Flash Player and bypasses 2FA (score: 0.91)
A Look Into The New Strain Of BankBot (score: 0.82)
Banking Trojan infected dozens of Android apps worldwide (score: 0.81)
BankBot Found on Google Play and Targets Ten New UAE Banking Apps (score: 0.80)
Trojan-Banker.AndroidOS.Faketoken follow-up (score: 0.79)

このPulseに関連する脅威アクター (事実ベース)

FIN7

Score: 13.31

Matched TTPs:

T1674 - Input Injection
T1564.001 - Hidden Files and Directories
T1008 - Fallback Channels
T1078.003 - Local Accounts

MITREへのリンク →

LuminousMoth

Score: 5.12

Matched TTPs:

T1588.001 - Malware
T1564.001 - Hidden Files and Directories

MITREへのリンク →

TA2541

Score: 5.61

Matched TTPs:

T1588.001 - Malware
T1055.012 - Process Hollowing

MITREへのリンク →

LAPSUS$

Score: 8.24

Matched TTPs:

T1588.001 - Malware
T1589.001 - Credentials
T1003.003 - NTDS

MITREへのリンク →

UNC3886

Score: 5.90

Matched TTPs:

T1588.001 - Malware
T1008 - Fallback Channels

MITREへのリンク →

TA505

Score: 5.39

Matched TTPs:

T1588.001 - Malware
T1055.001 - Dynamic-link Library Injection

MITREへのリンク →

Turla

Score: 11.67

Matched TTPs:

T1588.001 - Malware
T1555.004 - Windows Credential Manager
T1055.001 - Dynamic-link Library Injection
T1078.003 - Local Accounts

MITREへのリンク →

BackdoorDiplomacy

Score: 5.39

Matched TTPs:

T1588.001 - Malware
T1055.001 - Dynamic-link Library Injection

MITREへのリンク →

Scattered Spider

Score: 13.80

Matched TTPs:

T1588.001 - Malware
T1657 - Financial Theft
T1585.001 - Social Media Accounts
T1556.009 - Conditional Access Policies
T1003.003 - NTDS

MITREへのリンク →

Contagious Interview

Score: 11.92

Matched TTPs:

T1657 - Financial Theft
T1585.001 - Social Media Accounts
T1547.013 - XDG Autostart Entries
T1566.003 - Spearphishing via Service

MITREへのリンク →

Malteiro

Score: 5.45

Matched TTPs:

T1657 - Financial Theft
T1055.001 - Dynamic-link Library Injection

MITREへのリンク →

Kimsuky

Score: 16.58

Matched TTPs:

T1657 - Financial Theft
T1585.001 - Social Media Accounts
T1055.012 - Process Hollowing
T1218.010 - Regsvr32
T1588.003 - Code Signing Certificates
T1078.003 - Local Accounts

MITREへのリンク →

FIN13

Score: 12.07

Matched TTPs:

T1657 - Financial Theft
T1564.001 - Hidden Files and Directories
T1003.003 - NTDS
T1556 - Modify Authentication Process

MITREへのリンク →

Storm-0501

Score: 9.40

Matched TTPs:

T1657 - Financial Theft
T1218.010 - Regsvr32
T1556.009 - Conditional Access Policies

MITREへのリンク →

Medusa Group

Score: 7.20

Matched TTPs:

T1657 - Financial Theft
T1585.001 - Social Media Accounts
T1003.003 - NTDS

MITREへのリンク →

Water Galura

Score: 4.86

Matched TTPs:

T1657 - Financial Theft
T1585.001 - Social Media Accounts

MITREへのリンク →

Play

Score: 5.19

Matched TTPs:

T1657 - Financial Theft
T1078.003 - Local Accounts

MITREへのリンク →

Sandworm Team

Score: 4.68

Matched TTPs:

T1585.001 - Social Media Accounts
T1003.003 - NTDS

MITREへのリンク →

EXOTIC LILY

Score: 4.86

Matched TTPs:

T1585.001 - Social Media Accounts
T1566.003 - Spearphishing via Service

MITREへのリンク →

Leviathan

Score: 11.45

Matched TTPs:

T1585.001 - Social Media Accounts
T1218.010 - Regsvr32
T1589.001 - Credentials
T1055.001 - Dynamic-link Library Injection

MITREへのリンク →

CURIUM

Score: 4.86

Matched TTPs:

T1585.001 - Social Media Accounts
T1566.003 - Spearphishing via Service

MITREへのリンク →

Lazarus Group

Score: 18.03

Matched TTPs:

T1585.001 - Social Media Accounts
T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories
T1008 - Fallback Channels
T1055.001 - Dynamic-link Library Injection
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT32

Score: 10.42

Matched TTPs:

T1585.001 - Social Media Accounts
T1218.010 - Regsvr32
T1564.001 - Hidden Files and Directories
T1078.003 - Local Accounts

MITREへのリンク →

Fox Kitten

Score: 4.68

Matched TTPs:

T1585.001 - Social Media Accounts
T1003.003 - NTDS

MITREへのリンク →

Magic Hound

Score: 8.30

Matched TTPs:

T1585.001 - Social Media Accounts
T1589.001 - Credentials
T1566.003 - Spearphishing via Service

MITREへのリンク →

Moonstone Sleet

Score: 4.86

Matched TTPs:

T1585.001 - Social Media Accounts
T1566.003 - Spearphishing via Service

MITREへのリンク →

Gorgon Group

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

Threat Group-3390

Score: 6.30

Matched TTPs:

T1055.012 - Process Hollowing
T1588.003 - Code Signing Certificates

MITREへのリンク →

Patchwork

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

BlackByte

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

menuPass

Score: 5.49

Matched TTPs:

T1055.012 - Process Hollowing
T1003.003 - NTDS

MITREへのリンク →

APT28

Score: 12.58

Matched TTPs:

T1589.001 - Credentials
T1564.001 - Hidden Files and Directories
T1003.003 - NTDS
T1550.001 - Application Access Token

MITREへのリンク →

Chimera

Score: 5.78

Matched TTPs:

T1589.001 - Credentials
T1003.003 - NTDS

MITREへのリンク →

OilRig

Score: 12.74

Matched TTPs:

T1555.004 - Windows Credential Manager
T1588.003 - Code Signing Certificates
T1008 - Fallback Channels
T1566.003 - Spearphishing via Service

MITREへのリンク →

Stealth Falcon

Score: 3.62

Matched TTPs:

T1555.004 - Windows Credential Manager

MITREへのリンク →

Wizard Spider

Score: 12.04

Matched TTPs:

T1555.004 - Windows Credential Manager
T1588.003 - Code Signing Certificates
T1003.003 - NTDS
T1055.001 - Dynamic-link Library Injection

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

BlackTech

Score: 3.15

Matched TTPs:

T1588.003 - Code Signing Certificates

MITREへのリンク →

FIN8

Score: 3.15

Matched TTPs:

T1588.003 - Code Signing Certificates

MITREへのリンク →

Mustang Panda

Score: 12.29

Matched TTPs:

T1588.003 - Code Signing Certificates
T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories
T1003.003 - NTDS

MITREへのリンク →

Tropic Trooper

Score: 8.26

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1055.001 - Dynamic-link Library Injection
T1078.003 - Local Accounts

MITREへのリンク →

HAFNIUM

Score: 11.81

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1003.003 - NTDS
T1550.001 - Application Access Token
T1078.003 - Local Accounts

MITREへのリンク →

FIN6

Score: 4.86

Matched TTPs:

T1003.003 - NTDS
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT41

Score: 5.78

Matched TTPs:

T1003.003 - NTDS
T1008 - Fallback Channels

MITREへのリンク →

APT29

Score: 5.19

Matched TTPs:

T1566.003 - Spearphishing via Service
T1078.003 - Local Accounts

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.77

Matched TTPs:

T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories
T1585.001 - Social Media Accounts
T1008 - Fallback Channels
T1566.003 - Spearphishing via Service
T1055.001 - Dynamic-link Library Injection

MITREへのリンク →

Kimsuky

Score: 0.70

Matched TTPs:

T1585.001 - Social Media Accounts
T1657 - Financial Theft
T1218.010 - Regsvr32
T1055.012 - Process Hollowing
T1588.003 - Code Signing Certificates
T1078.003 - Local Accounts

MITREへのリンク →

FIN7

Score: 0.67

Matched TTPs:

T1674 - Input Injection
T1564.001 - Hidden Files and Directories
T1008 - Fallback Channels
T1078.003 - Local Accounts

MITREへのリンク →

Scattered Spider

Score: 0.63

Matched TTPs:

T1003.003 - NTDS
T1585.001 - Social Media Accounts
T1657 - Financial Theft
T1556.009 - Conditional Access Policies
T1588.001 - Malware

MITREへのリンク →

FIN13

Score: 0.59

Matched TTPs:

T1657 - Financial Theft
T1003.003 - NTDS
T1564.001 - Hidden Files and Directories
T1556 - Modify Authentication Process

MITREへのリンク →

APT28

Score: 0.57

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1003.003 - NTDS
T1589.001 - Credentials
T1550.001 - Application Access Token

MITREへのリンク →

Wizard Spider

Score: 0.56

Matched TTPs:

T1003.003 - NTDS
T1588.003 - Code Signing Certificates
T1055.001 - Dynamic-link Library Injection
T1555.004 - Windows Credential Manager

MITREへのリンク →

OilRig

Score: 0.56

Matched TTPs:

T1008 - Fallback Channels
T1588.003 - Code Signing Certificates
T1566.003 - Spearphishing via Service
T1555.004 - Windows Credential Manager

MITREへのリンク →

Mustang Panda

Score: 0.55

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1027.007 - Dynamic API Resolution
T1003.003 - NTDS
T1588.003 - Code Signing Certificates

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る