Twitoor

Twitoor is a dropper application capable of receiving commands from social media.[1]

ID: S0302
Type: MALWARE
Platforms: Android
Version: 2.0
Created: 25 October 2017
Last Modified: 30 September 2020

Techniques Used

Domain ID Name Use
Mobile T1476 Deliver Malicious App via Other Means

Twitoor can install attacker-specified applications.[1]

Mobile T1521 Standard Cryptographic Protocol

Twitoor encrypts its C2 communication.[1]

Mobile T1508 Suppress Application Icon

Twitoor can hide its presence on the system.[1]

Mobile T1481 Web Service

Twitoor can be controlled via Twitter.[1]

References