Scarcruft Bolsters Arsenal for targeting individual Android devices

Author: BLKSMTH | S2W TALON

Executive Summary

• According to an analysis report published by InterLab in December 2022, a South Korean journalist received a message requesting a conversation via the Wechat messenger, and the requestor instructed the journalist to install a malicious APK file disguised as a messenger called “Fizzle.apk” — InterLab named the malicious APK "RambleOn"


• We found similar features and codes to the mobile version …

analysis android android devices apk arsenal author called conversation december devices features install journalist malicious malware analysis message messenger photo report s2w scarcruft south talon targeting wechat