JadeRAT

Description

(Lookout) Lookout researchers are monitoring the evolution of an Android surveillanceware family known as JadeRAT, we believe may be connected to a government sponsored APT group.

JadeRAT supports over 60 commands that can be issued in the format !<command_id>&<optional_cmd_params>@. Many of these offer standard information gathering functionality seen in typical mobile surveillanceware, however JadeRAT supports several less common capabilities. These include notifying an operator via SMS when a device has booted and silently dropping calls and texts to attacker specified numbers.

Names

Name
JadeRAT

Type

Backdoor
Info stealer
Exfiltration

Information

https://blog.lookout.com/mobile-threat-jaderat

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/apk.jaderat

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:JadeRAT

Other Information

Uuid

6c0793c6-9672-44d2-8bed-467f09279194

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

JadeRAT

JadeRAT

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks