Trusted Design

Trojan-Banker.AndroidOS.Faketoken follow-up

概要

December 19: Many mobile bankers can block a device in order to extort money from its user. But we have discovered a modification of the mobile banking Trojan Trojan-Banker.AndroidOS.Faketoken that went even further – it can encrypt user data. In addition to that, this modification is attacking more than 2,000 financial apps around the world. We have managed to detect several thousand Faketoken installation packages capable of encrypting data, the earliest of which dates back to July 2016. According to our information, the number of this banker’s victims exceeds 16,000 users in 27 countries, with most located in Russia, Ukraine, Germany and Thailand. Trojan-Banker.AndroidOS.Faketoken is distributed under the guise of various programs and games, often imitating Adobe Flash Player. Many others hashes available ... but could be other variants. Investigations in progress.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Android banking trojan as Flash Player and bypasses 2FA (score: 0.80)
Banking Trojan infected dozens of Android apps worldwide (score: 0.79)
Android banking malware masquerades as Flash Player (score: 0.79)
A Look Into The New Strain Of BankBot (score: 0.78)
Android Trojan GM Bot is evolving and targeting more than 50 banks worldwide (score: 0.75)

このPulseに関連する脅威アクター (事実ベース)

FIN6

Score: 5.90

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1556 - Modify Authentication Process

MITREへのリンク →

CopyKittens

Score: 3.15

Matched TTPs:

T1016.001 - Internet Connection Discovery

MITREへのリンク →

Mustang Panda

Score: 15.73

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1058 - Service Registry Permissions Weakness
T1055.005 - Thread Local Storage
T1105 - Ingress Tool Transfer
T1556 - Modify Authentication Process

MITREへのリンク →

Kimsuky

Score: 12.55

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1552.003 - Shell History
T1668 - Exclusive Control
T1003.003 - NTDS

MITREへのリンク →

UNC3886

Score: 3.15

Matched TTPs:

T1016.001 - Internet Connection Discovery

MITREへのリンク →

Lotus Blossom

Score: 3.15

Matched TTPs:

T1016.001 - Internet Connection Discovery

MITREへのリンク →

Lazarus Group

Score: 12.70

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1055.005 - Thread Local Storage
T1105 - Ingress Tool Transfer
T1556 - Modify Authentication Process

MITREへのリンク →

Mustard Tempest

Score: 4.54

Matched TTPs:

T1682 - Query Public AI Services

MITREへのリンク →

APT41

Score: 6.03

Matched TTPs:

T1560.003 - Archive via Custom Method
T1668 - Exclusive Control

MITREへのリンク →

Scattered Spider

Score: 5.81

Matched TTPs:

T1560.003 - Archive via Custom Method
T1552.003 - Shell History

MITREへのリンク →

TA505

Score: 3.29

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

Volt Typhoon

Score: 3.29

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

APT3

Score: 3.29

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

FIN13

Score: 11.22

Matched TTPs:

T1560.003 - Archive via Custom Method
T1552.003 - Shell History
T1668 - Exclusive Control
T1105 - Ingress Tool Transfer

MITREへのリンク →

Gamaredon Group

Score: 7.57

Matched TTPs:

T1058 - Service Registry Permissions Weakness
T1061 - Graphical User Interface

MITREへのリンク →

LuminousMoth

Score: 5.70

Matched TTPs:

T1058 - Service Registry Permissions Weakness
T1105 - Ingress Tool Transfer

MITREへのリンク →

Aoqin Dragon

Score: 3.03

Matched TTPs:

T1058 - Service Registry Permissions Weakness

MITREへのリンク →

Darkhotel

Score: 3.03

Matched TTPs:

T1058 - Service Registry Permissions Weakness

MITREへのリンク →

FIN7

Score: 10.24

Matched TTPs:

T1058 - Service Registry Permissions Weakness
T1011.001 - Exfiltration Over Bluetooth
T1105 - Ingress Tool Transfer

MITREへのリンク →

APT28

Score: 12.58

Matched TTPs:

T1058 - Service Registry Permissions Weakness
T1668 - Exclusive Control
T1105 - Ingress Tool Transfer
T1055.008 - Ptrace System Calls

MITREへのリンク →

Tropic Trooper

Score: 5.70

Matched TTPs:

T1058 - Service Registry Permissions Weakness
T1105 - Ingress Tool Transfer

MITREへのリンク →

Contagious Interview

Score: 5.27

Matched TTPs:

T1552.003 - Shell History
T1556 - Modify Authentication Process

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

APT32

Score: 8.16

Matched TTPs:

T1668 - Exclusive Control
T1105 - Ingress Tool Transfer
T1556 - Modify Authentication Process

MITREへのリンク →

Wizard Spider

Score: 5.49

Matched TTPs:

T1668 - Exclusive Control
T1556 - Modify Authentication Process

MITREへのリンク →

Ember Bear

Score: 6.88

Matched TTPs:

T1668 - Exclusive Control
T1003.003 - NTDS

MITREへのリンク →

HAFNIUM

Score: 6.80

Matched TTPs:

T1105 - Ingress Tool Transfer
T1055.008 - Ptrace System Calls

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Mustang Panda

Score: 0.81

Matched TTPs:

T1105 - Ingress Tool Transfer
T1556 - Modify Authentication Process
T1055.005 - Thread Local Storage
T1016.001 - Internet Connection Discovery
T1058 - Service Registry Permissions Weakness

MITREへのリンク →

Lazarus Group

Score: 0.68

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1105 - Ingress Tool Transfer
T1556 - Modify Authentication Process
T1055.005 - Thread Local Storage

MITREへのリンク →

APT28

Score: 0.68

Matched TTPs:

T1058 - Service Registry Permissions Weakness
T1668 - Exclusive Control
T1055.008 - Ptrace System Calls
T1105 - Ingress Tool Transfer

MITREへのリンク →

Kimsuky

Score: 0.66

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1003.003 - NTDS
T1668 - Exclusive Control
T1552.003 - Shell History

MITREへのリンク →

FIN13

Score: 0.64

Matched TTPs:

T1668 - Exclusive Control
T1552.003 - Shell History
T1105 - Ingress Tool Transfer
T1560.003 - Archive via Custom Method

MITREへのリンク →

FIN7

Score: 0.63

Matched TTPs:

T1105 - Ingress Tool Transfer
T1058 - Service Registry Permissions Weakness
T1011.001 - Exfiltration Over Bluetooth

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る