ANDROIDOS_ANSERVER.A

ANDROIDOS_ANSERVER.A is Android malware that is unique because it uses encrypted content within a blog site for command and control. [1]

ID: S0310
Aliases: ANDROIDOS_ANSERVER.A
Type: MALWARE
Platforms: Android

Version: 1.1

Alias Descriptions

NameDescription
ANDROIDOS_ANSERVER.A[1]

Techniques Used

DomainIDNameUse
MobileT1437Standard Application Layer ProtocolANDROIDOS_ANSERVER.A uses encrypted content within a blog site for part of its command and control. Specifically, the encrypted content contains URLs for other servers to be used for other aspects of command and control.[1]

References