SimBad was a strain of adware on the Google Play Store, distributed through the RXDroider Software Development Kit. The name "SimBad" was derived from the fact that most of the infected applications were simulator games. The adware was controlled using an instance of the open source framework Parse Server.
|Mobile||T1624||.001||Event Triggered Execution: Broadcast Receivers||
SimBad registers for the
|Mobile||T1643||Generate Traffic from Victim|
|Mobile||T1628||.001||Hide Artifacts: Suppress Application Icon|