SilverHawk

Description

(Lookout) App Capabilities: • Record Audio o Stream environment audio over raw socket when instructed • Take photos with device camera • Survival counter - failed server connections and it stops • Retrieve files from external storage o Top directory o Downloads, Pictures, DCIM directories o WhatsApp, Telegram, Viber, ShareIt content o Files sent over Bluetooth • File utility to copy, move, rename, and delete files • Download attacker specified files • Enumerate installed apps incl. date & time installed • Attempt to execute attacker specified commands or binary as root • Retrieve contacts and related data: o Call logs o Contacts o Text Messages • Location, direction, and acceleration of the device • Remotely updateable C2 IP and port • Hide Icon • Device information o Retrieve battery levels, WiFi and GPS status, storage and cellular carrier info

Names

Name
SilverHawk

Type

Backdoor
Info stealer
Exfiltration

Information

https://i.blackhat.com/eu-18/Wed-Dec-5/eu-18-DelRosso-Under-the-SEA.pdf

Other Information

Uuid

ec12d7cd-5480-4511-a333-2b0c4c26c65e

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

SilverHawk

SilverHawk

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks