#SpyNote - Twitter Hashtag

4 months ago

SpyNote is one of the more interesting Android RATs in the wild today. Better a published analysis than a perfect one left unfinished - this ina I published. :-) https://t.co/02knrvjYYI #AndroidMalware #SpyNote #MobileSecurity #MalwareAnalysis #CTI

0

3

1

209

CERT Orange Polska

@CERT_OPL

5 months ago

#SpyNote to kawał wyrafinowanego malware'u. Jak bardzo? Przyjrzał mu się - bardzo dokładnie - @c0t0d0s2. Lektura długa, ale warto! Tym bardziej, że napisane tak, że zrozumieją nie tylko techniczni. A po lekturze włos się trochę jeży, tym bardziej, że niektóre z próbek podszywały się pod @InPostPL czy @gmail. https://t.co/pVxdH8w2wP

CERT_OPL's tweet photo. #SpyNote to kawał wyrafinowanego malware'u. Jak bardzo? Przyjrzał mu się - bardzo dokładnie - @c0t0d0s2. Lektura długa, ale warto! Tym bardziej, że napisane tak, że zrozumieją nie tylko techniczni.
A po lekturze włos się trochę jeży, tym bardziej, że niektóre z próbek podszywały się pod @InPostPL czy @gmail.
https://t.co/pVxdH8w2wP

1

20

5

6

2K

Jane

@Jane_0sint

5 months ago

#Eaglespy #SpyNote Sandbox links: https://t.co/mEtFCvptYp https://t.co/rCTLgjOKak https://t.co/zRKVn1AjMT

1

3

0

2

565

Secure Blink

@secure_blink

7 months ago

This "WhatsApp Update" Will Empty Your Bank Account. Details: https://t.co/SLIlVIdBsf #Spynote #Phishing #CISO #hack #WhatsApp #Threatfeed #SecureBlink

secure_blink's tweet photo. This "WhatsApp Update" Will Empty Your Bank Account.

Details: https://t.co/SLIlVIdBsf

#Spynote #Phishing #CISO #hack #WhatsApp #Threatfeed #SecureBlink https://t.co/BIj2bDrAs5

0

4

2

0

78

Demon @volrant136

7 months ago

#Spynote #opendir | AttackCapture An opendir is tracked by @Huntio having 5 different spynote samples. 65cd191f13353ec1cc061ccc751cbfaa d610ced310444cfbab7daa91e3f79439 68a98e82d2abdec08d7cad18a0c3eb8b 32acc69b4c703de71d7a97632c805ede 16fd63efc57a726706ba9eb5b996af21

volrant136's tweet photo. #Spynote #opendir | AttackCapture

An opendir is tracked by @Huntio having 5 different spynote samples.

65cd191f13353ec1cc061ccc751cbfaa
d610ced310444cfbab7daa91e3f79439
68a98e82d2abdec08d7cad18a0c3eb8b
32acc69b4c703de71d7a97632c805ede
16fd63efc57a726706ba9eb5b996af21 https://t.co/STIV27y8HB

1

4

1

416

Quark Engine @quarkengine

9 months ago

🎉 4 new rules added and 238 rules updated for the #SpyNote malware family. We're moving toward practical, powerful tools — thanks for your continued support! 🙏 Thanks to @zorro_wang ! 🔗 Report: https://t.co/oo4eTD1qvo

quarkengine's tweet photo. 🎉 4 new rules added and 238 rules updated for the #SpyNote malware family. We're moving toward practical, powerful tools — thanks for your continued support!

🙏 Thanks to @zorro_wang !

🔗 Report: https://t.co/oo4eTD1qvo https://t.co/RxYybtyO9n

0

6

3

0

229

BRT @venombrt99

9 months ago

Android RAT 远程控制任何设备。 #craxrat #eaglespy #spynote #spyware

1

0

381

BRT @venombrt99

9 months ago

Android RAT удаленно управляет любым устройством. #craxrat #eaglespy #spynote #шпионское ПО telegram @ venombrt

0

1

310

Threat Intelligence @threatintel

9 months ago

#ThreatProtection #SpyNote #Android #RAT is resurging via fake Google Play pages, using dropper APKs with DEX injection and obfuscation. Read more: https://t.co/MzngRKKL9N #Cybersecurity #Malware

0

1

0

Gray Hats @the_yellow_fall

10 months ago

A new report reveals a SpyNote Android RAT campaign using fake Google Play Store clones to steal data, with the malware abusing Accessibility Services for control. #CyberSecurity #Android #SpyNote #Malware #Hacking https://t.co/cEnBdPzfmO

1

0

1

0

226

DomainTools @DomainTools

10 months ago

A new #SpyNote report is out! 🚨 Dive into the tactics of this Android RAT campaign, from dynamic payload decryption to new obfuscation methods. Learn how threat actors are using deceptive Google Play Store clones to target users https://t.co/XmxKAgUAHV

DomainTools's tweet photo. A new #SpyNote report is out! 🚨 Dive into the tactics of this Android RAT campaign, from dynamic payload decryption to new obfuscation methods. Learn how threat actors are using deceptive Google Play Store clones to target users
https://t.co/XmxKAgUAHV https://t.co/kR1Ny3dYsf

0

20

6

5

2K

Cybersecurity News Everyday

@TweetThreatNews

10 months ago

Fake Google Play Store sites deliver Android SpyNote RAT via APK droppers using dynamic decryption, DEX injection, and anti-analysis tactics. Targets include spoofed Chrome, CamSoda, and iHappy apps. #SpyNote #AndroidThreat #MalwareIndia https://t.co/vPlBXAm7Ix

0

1

0

184

SecuritySnacks @SecuritySnacks

10 months ago

A new #SpyNote report is out! 🚨 Dive into the tactics of this Android RAT campaign, from dynamic payload decryption to new obfuscation methods. Learn how threat actors are using deceptive Google Play Store clones to target users: https://t.co/sPujkpc524

SecuritySnacks's tweet photo. A new #SpyNote report is out! 🚨 Dive into the tactics of this Android RAT campaign, from dynamic payload decryption to new obfuscation methods. Learn how threat actors are using deceptive Google Play Store clones to target users:
https://t.co/sPujkpc524 https://t.co/FCon5miGrz

0

2

0

126

DomainTools @DomainTools

10 months ago

A new #SpyNote report is out! 🚨 Dive into the tactics of this Android RAT campaign, from dynamic payload decryption to new obfuscation methods. Learn how threat actors are using deceptive Google Play Store clones to target users https://t.co/XmxKAgUAHV

0

2

1

0

387

Threat Intelligence @threatintel

10 months ago

#ThreatProtection #SpyNote campaign abuses IBM Trusteer branding with a fake “Mobile” app. https://t.co/oZeTsDdA9T

0

4

2

1

2K

Salt Communications @saltcontrol

11 months ago

SpyNote, BadBazaar, MOONSHINE Malware Target Android and iOS Users via Fake Apps https://t.co/vcbh0qZ2oG #Malware #SpyNote #Android #iOS #SecureComms #MobileComms

saltcontrol's tweet photo. SpyNote, BadBazaar, MOONSHINE Malware Target Android and iOS Users via Fake Apps

https://t.co/vcbh0qZ2oG

#Malware #SpyNote #Android #iOS #SecureComms #MobileComms https://t.co/aDl4prdENj

0

73

Mayank Malik @_mostwanted002_

11 months ago

Android Malware Alert/PSA: mParivahan.apk #Spynote malware family. 2-stage IOCs: MD5: e4c7d672dec271226d5ff1a7da15e182 Payload: 9d0f2d607d48a8b5e3ce23315f86c004 tcp[:]//154[.]61[.]80[.]131[:]6666 tcp[:]//154[.]61[.]80[.]242[:]7771 Full report soon CC: @IndianCERT @MeityGov

_mostwanted002_'s tweet photo. Android Malware Alert/PSA:
mParivahan.apk
#Spynote malware family. 2-stage
IOCs:
MD5: e4c7d672dec271226d5ff1a7da15e182
Payload: 9d0f2d607d48a8b5e3ce23315f86c004
tcp[:]//154[.]61[.]80[.]131[:]6666
tcp[:]//154[.]61[.]80[.]242[:]7771
Full report soon

CC: @IndianCERT @MeityGov https://t.co/ui0ZxnLpPl

0

4

1

0

616

ANY.RUN

@anyrun_app

11 months ago

🤖 Android devices can be a major cybersecurity hazard for businesses. See how #ANYRUN helps detect #malicious files early, accelerate investigations, and improve threat response. Analysis of #SalvadorStealer and #SpyNote inside👇 https://t.co/Me7ChAzETA

0

6

3

2

1K

Gray Hats @the_yellow_fall

12 months ago

Researchers uncovered dozens of malicious Android apps disguised as popular programs on open servers, which are fronts for SpyNote spyware, harvesting sensitive user data. #AndroidSpyware #SpyNote #MobileSecurity #Cybersecurity #MalwareAlert https://t.co/HlIoamk1F2

0

1

0

265

ANY.RUN

@anyrun_app

12 months ago

🤖 Android devices can be a major cybersecurity hazard for businesses. See how #ANYRUN helps with early detection of malicious APKs to prevent costly incidents. Analysis of #SalvadorStealer and #SpyNote inside 👇 https://t.co/EnnU81IHlG

0

6

4

1

1K

Top Tweets for #SpyNote

Last Seen Hashtags on Sotwe

Trends for you

Most Popular Users