The sub-techniques beta is now live! Read the release blog post for more info.
SOFTWARE
SOFTWARE
1-9
A-B
C-D
E-F
G-H
I-J
K-L
M-N
O-P
Q-R
S-T
U-V
W-X
Y-Z
  1. Home
  2. Software
  3. ShiftyBug

ShiftyBug

ShiftyBug is an auto-rooting adware family of malware for Android. The family is very similar to the other Android families known as Shedun, Shuanet, Kemoge, though it is not believed all the families were created by the same group. [1]

ID: S0294
Type: MALWARE
Platforms: Android
Version: 1.1
Created: 25 October 2017
Last Modified: 11 December 2018
Mobile Layer
download view

Techniques Used

Domain ID Name Use
Mobile T1404 Exploit OS Vulnerability

ShiftyBug is packed with at least eight publicly available exploits that can perform rooting.[1]
Mobile T1400 Modify System Partition

ShiftyBug is auto-rooting adware that embeds itself as a system application, making it nearly impossible to remove.[1]

References

  1. Michael Bentley. (2015, November 4). Lookout discovers new trojanized adware; 20K popular apps caught in the crossfire. Retrieved December 21, 2016.