ThaiCERT    ETDA    MDES
Report
Search
Home > List all groups > List all tools > List all groups using tool TeaBot

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: TeaBot

NamesTeaBot
CategoryMalware
TypeBanking trojan, Backdoor, Info stealer, Keylogger, Credential stealer
Description(Cleafy) TeaBot appears to have all the main features of nowadays Android bankers achieved by abusing Accessibility Services such as:
• Ability to perform Overlay Attacks against multiple banks applications to steal login credentials and credit card information
• Ability to send / intercept / hide SMS messages
• Enabling key logging functionalities
• Ability to steal Google Authentication codes
• Ability to obtain full remote control of an Android device (via Accessibility Services and real-time screen-sharing)
Information<https://www.cleafy.com/documents/teabot>

Last change to this tool card: 15 May 2021

Download this tool card in JSON format

Previous: TDTESS
Next: TeamSpy

All groups using tool TeaBot

ChangedNameCountryObserved

Unknown groups

 _[ Interesting malware not linked to an actor yet ]_ 

1 group listed (0 APT, 0 other, 1 unknown)

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
E-mail report@thaicert.or.th
PGP Download PGP key