Infamous Chisel: Mobile Device (Android) Malware Analysis Report - 20230905004

Overview

The Australian Cyber Security Center (ACSC) have released a malware analysis report on "Infamous Chisel". Infamous Chisel is a collection of components which enable persistent access to an infected Android device over the Tor network, and which periodically collates and exfiltrates victim information from compromised devices.

Affected Devices

• Android Mobile Devices

What has been observed?

There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.

Recommendation

The WA SOC recommends security awareness programs and briefings include guidance around Secure Your Mobile Phone (ACSC) and administrators perform a scan for the included IoCs and remediate where necessary. Enterprises should also review Risk Management of Enterprise Mobility Including Bring Your Own Device (ACSC) to ensure organisations have appropriate mechanisms in place to manage corporate information being released to managed and unmanaged mobile devices.

Additional References

• Secure Your Mobile Phone (ACSC)
• Risk Management of Enterprise Mobility Including Bring Your Own Device (ACSC)
• Report - ACSC Infamous Chisel Malware Analysis
• Report - NCSC Infamous Chisel Malware Analysis
• News - Sandworm attacks Ukraine with Infamous Chisel malware