mirror of https://github.com/MISP/misp-galaxy
Deduplicate Android cluster
parent
40e26a59f1
commit
24e7d89ac9
|
@ -131,11 +131,12 @@
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"value": "Switcher",
|
"value": "Switcher",
|
||||||
"description": "Swticher attempts to infiltrate a router's admin interface on the devices' WIFI network by using brute force techniques. If the attack succeeds, Switcher alters the DNS settings of the router, making it possible to reroute DNS queries to a network controlled by the malicious actors.",
|
"description": "Switcher is a Trojan horse for Android devices that modifies Wi-Fi router DNS settings. Swticher attempts to infiltrate a router's admin interface on the devices' WIFI network by using brute force techniques. If the attack succeeds, Switcher alters the DNS settings of the router, making it possible to reroute DNS queries to a network controlled by the malicious actors.",
|
||||||
"meta": {
|
"meta": {
|
||||||
"refs": [
|
"refs": [
|
||||||
"http://www.zdnet.com/article/this-android-infecting-trojan-malware-uses-your-phone-to-attack-your-router/",
|
"http://www.zdnet.com/article/this-android-infecting-trojan-malware-uses-your-phone-to-attack-your-router/",
|
||||||
"https://www.theregister.co.uk/2017/01/03/android_trojan_targets_routers/"
|
"https://www.theregister.co.uk/2017/01/03/android_trojan_targets_routers/",
|
||||||
|
"https://www.symantec.com/security_response/writeup.jsp?docid=2017-090410-0547-99"
|
||||||
]
|
]
|
||||||
}
|
}
|
||||||
},
|
},
|
||||||
|
@ -3330,15 +3331,6 @@
|
||||||
]
|
]
|
||||||
}
|
}
|
||||||
},
|
},
|
||||||
{
|
|
||||||
"value": "Switcher",
|
|
||||||
"description": "Switcher is a Trojan horse for Android devices that modifies Wi-Fi router DNS settings. ",
|
|
||||||
"meta": {
|
|
||||||
"refs": [
|
|
||||||
"https://www.symantec.com/security_response/writeup.jsp?docid=2017-090410-0547-99"
|
|
||||||
]
|
|
||||||
}
|
|
||||||
},
|
|
||||||
{
|
{
|
||||||
"value": "Sysecsms",
|
"value": "Sysecsms",
|
||||||
"description": "Sysecsms is a Trojan horse for Android devices that steals information from the compromised device. ",
|
"description": "Sysecsms is a Trojan horse for Android devices that steals information from the compromised device. ",
|
||||||
|
@ -3736,7 +3728,7 @@
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 1,
|
"version": 2,
|
||||||
"uuid": "84310ba3-fa6a-44aa-b378-b9e3271c58fa",
|
"uuid": "84310ba3-fa6a-44aa-b378-b9e3271c58fa",
|
||||||
"description": "Android malware galaxy based on multiple open sources.",
|
"description": "Android malware galaxy based on multiple open sources.",
|
||||||
"authors": [
|
"authors": [
|
||||||
|
|
Loading…
Reference in New Issue