Back

Cursed tapes: Exploiting the EvilVideo vulnerability on Telegram for Android

July 23, 2024, 8:14 a.m.

Tags

malware
exploit
android
vulnerability
telegram
2024-07-23
android/spy.spymax.t

External References

https://www.welivesecurity.com/

https://otx.alienvault.com/

Description

ESET researchers discovered a vulnerability named EvilVideo that allows attackers to share malicious Android payloads disguised as video files through Telegram for Android. The exploit makes the malicious files appear as multimedia content, tricking users into installing malware. The vulnerability affected Telegram for Android versions up to 10.14.4 but was patched in version 10.14.5 after being reported to Telegram.

Date

Published Created Modified
July 23, 2024, 7:49 a.m. July 23, 2024, 7:49 a.m. July 23, 2024, 8:14 a.m.

Attack Patterns

Android/Spy.SpyMax.T

T1457

T1036