Skip to content

A TECHNICAL ANALYSIS OF PEGASUS FOR ANDROID - Part 1

Table of Contents

Pegasus is a spyware developed by the NSO group that was repeatedly analyzed by Amnesty International and CitizenLab. In this article, we dissect the Android version that was initially analyzed by Lookout in this paper, and we recommend reading it along with this post. During our research about Pegasus for Android, we’ve found out that vendors wrongly attributed some undocumented APK files to Pegasus, as highlighted by a researcher here. We’ve splitted the analysis into 3 parts because of the code’s complexity and length. We’ve also tried to keep the sections name proposed by Lookout whenever it was possible so that anybody could follow the two approaches more easily. In this part, we’re presenting the initialization of the application (including its configuration), the targeted applications, the commands related to the core functionality, and the methods that Pegasus could use to remove itself from a device. Our contributions consist of dissecting the application deeper than before and explaining additional functionalities that were identified.
A technical analysis of Pegasus for Android – Part 1 – CYBER GEEKS

Latest

Szele Tamás: Blokádtörők

Szele Tamás: Blokádtörők

A szankciók működnének – ha nem sértenék meg őket. Ahogy a régi mondás tartja: mindenre van törvényünk, csak egyetlen hiányzik – az, ami kimondaná, hogy a törvényeket be kell tartani.

Members Public
Szele Tamás: Az ISIS-K Moszkvában

Szele Tamás: Az ISIS-K Moszkvában

Az orosz–ukrán ellentét tengelyén horizontálisan gondolkodó rendszert vertikális támadás érte, derült égből iszlám terror, és most nem tud mit kezdeni vele, erre nem számított.

Members Public