S0292 AndroRAT
AndroRAT is malware that allows a third party to control the device and collect information. 1
| Item | Value |
|---|---|
| ID | S0292 |
| Type | MALWARE |
| Version | 1.0 |
| Created | 25 October 2017 |
| Last Modified | 24 October 2022 |
| Navigation Layer | View In ATT&CK® Navigator |
Techniques Used
| Domain | ID | Name | Use |
|---|---|---|---|
| mobile | T1429 | Audio Capture | AndroRAT gathers audio from the microphone.1 |
| mobile | T1430 | Location Tracking | AndroRAT tracks the device location.1 |
| mobile | T1636 | Protected User Data | - |
| mobile | T1636.002 | Call Log | AndroRAT collects call logs.1 |
| mobile | T1636.003 | Contact List | AndroRAT collects contact list information.1 |
| mobile | T1636.004 | SMS Messages | AndroRAT captures SMS messages.1 |