In depth analysis of Darkshades. A RAT infecting Android devices

Published by Avira

‘Darkshades’ is a RAT (Remote Access Trojan) that targets Android devices. It enables criminals to steal contacts, track location accurately, exfiltrate live SMS/MMS, grab card credential, capture screenshot, encrypt files and initiate DDOS attacks. Compared to other RAT families that are spread through Google Play apps, or third-party tools, the infection vector of this family of RATs does not have a stable infection strategy. Consequently, despite extensive functionality, Darkshades has kept a low profile: On Twitter it has been mentioned twice since 2017, and by the end of 2019 only two samples had been identified in the wild. Despite this, Avira found a sample in March 2020. In this blog, Bogdan Anghelache, threat researcher of the Android Detection Team at Avira, takes a deep dive into recent Darkshades samples and analyzes how they infect Android devices.

Download Now

Required fields*

Submit

By submitting this form you agree to Avira contacting you with marketing-related emails or by telephone. You may unsubscribe at any time. Avira web sites and communications are subject to their Privacy Notice.

Please agree to the conditions

By requesting this resource you agree to our terms of use. All data is protected by our Privacy Notice. If you have any further questions please email dataprotection@headleymedia.com.

Submit

Required fields*

First Name *

Last Name *

Job Title *

Company Name *

Address Line 1 *

City *

State/County *

Zip/Postal Code *

Country *

---------- Albania Armenia Australia Austria Azerbaijan Bahrain Belgium Bosnia and Herzegovina Brazil Bulgaria Cambodia Canada China Croatia Czech Republic Denmark Egypt Estonia Finland France Germany Georgia Greece Hong Kong SAR Hungary Iceland India Indonesia Iran Ireland Israel Italy Japan Jordan Korea Kuwait Laos Liechtenstein Lebanon Luxembourg Malaysia Mexico Netherlands New Zealand Nigeria Norway Oman Philippines Poland Portugal Qatar Romania Russia Saudi Arabia Serbia Singapore South Africa Slovenia Slovakia Spain Sweden Switzerland Taiwan Thailand Turkey Ukraine United Arab Emirates United Kingdom United States Yemen Vietnam Cyprus

Phone *

Industry *

---------- Administration Advertising/Media/Publishing Aerospace and Aviation Agriculture and Forestry Automotive Banking/Accounting/Financial Business Services Computer and Technology Education and Training Engineering and Construction Entertainment/Travel/Hospitality Food and Beverage Government and Public Administration Healthcare Insurance Integrator Legal Solutions Manufacturing Marketing Non profit Organizations Other Industry Not Listed Pharmaceutical Planning Public Relations Real Estate Retail and Wholesale Scientific Solutions Telecommunications Transportation and Shipping Utilities VAR/VAD/System Integrator

Company Size *

---------- 10,000+ 7,501-10,000 5,001-7,500 2,501-5,000 1,001-2,500 501-1,000 251-500 101-250 51-100 0-50

Submit

In order to provide you with this free service, we may share your business information with companies whose content you choose to view on this website.

All information that you supply is protected by our privacy policy and you agree to our Terms of Use.

Related Categories Email Security, Data Loss Prevention (DLP), Firewall