cti-ATT-CK-v13.1/mobile-attack/malware/malware--6fcaf9b0-b509-4644-9f93-556222c81ed2.json

{
    "type": "bundle",
    "id": "bundle--0d80d4cd-5790-4777-9ad8-ccd7acd9e024",
    "spec_version": "2.0",
    "objects": [
        {
            "labels": [
                "malware"
            ],
            "x_mitre_platforms": [
                "Android"
            ],
            "x_mitre_domains": [
                "mobile-attack"
            ],
            "x_mitre_aliases": [
                "ViceLeaker",
                "Triout"
            ],
            "object_marking_refs": [
                "marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168"
            ],
            "id": "malware--6fcaf9b0-b509-4644-9f93-556222c81ed2",
            "type": "malware",
            "created": "2019-11-21T16:42:48.203Z",
            "created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5",
            "external_references": [
                {
                    "external_id": "S0418",
                    "source_name": "mitre-attack",
                    "url": "https://attack.mitre.org/software/S0418"
                },
                {
                    "source_name": "ViceLeaker",
                    "description": "(Citation: SecureList - ViceLeaker 2019)"
                },
                {
                    "source_name": "Triout",
                    "description": "(Citation: SecureList - ViceLeaker 2019)"
                },
                {
                    "description": "GReAT. (2019, June 26).  ViceLeaker Operation: mobile espionage targeting Middle East. Retrieved November 21, 2019.",
                    "url": "https://securelist.com/fanning-the-flames-viceleaker-operation/90877/",
                    "source_name": "SecureList - ViceLeaker 2019"
                },
                {
                    "source_name": "Bitdefender - Triout 2018",
                    "url": "https://labs.bitdefender.com/2018/08/triout-spyware-framework-for-android-with-extensive-surveillance-capabilities/",
                    "description": "L. Arsene, C. Ochinca. (2018, August 20). Triout \u2013 Spyware Framework for Android with Extensive Surveillance Capabilities. Retrieved January 21, 2020."
                }
            ],
            "modified": "2020-03-26T19:00:42.233Z",
            "name": "ViceLeaker",
            "description": "[ViceLeaker](https://attack.mitre.org/software/S0418) is a spyware framework, capable of extensive surveillance and data exfiltration operations, primarily targeting devices belonging to Israeli citizens.(Citation: SecureList - ViceLeaker 2019)(Citation: Bitdefender - Triout 2018)",
            "x_mitre_version": "1.0",
            "x_mitre_attack_spec_version": "2.1.0",
            "x_mitre_modified_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5"
        }
    ]
}