Check out the results from our first round of ATT&CK Evaluations at attackevals.mitre.org!

X-Agent for Android

X-Agent for Android is Android malware that was placed in a repackaged version of a Ukrainian artillery targeting application. The malware reportedly retrieved general location data on where the victim device was used, and therefore could likely indicate the potential location of Ukrainian artillery. [1] Is it tracked separately from the Windows and Linux versions of X-Agent.

ID: S0314
Aliases: X-Agent for Android
Type: MALWARE
Platforms: Android

Version: 1.1

Alias Descriptions

NameDescription
X-Agent for Android[1]

Techniques Used

DomainIDNameUse
MobileT1430Location TrackingX-Agent for Android was believed to have been used to obtain locational data of Ukrainian artillery forces.[1]
MobileT1444Repackaged ApplicationX-Agent for Android was placed in a repackaged version of an application used by Ukrainian artillery forces.[1]

Groups

Groups that use this software:

APT28

References