Home

Malware Families

Daam

RAT

Backdoor

Daam

Daam

Daam is a dangerous Android malware designed to compromise user privacy. It hides inside legitimate applications and steals sensitive data by spying on the clipboard, logging keystrokes, and even taking control of the device. It’s particularly known for targeting cryptocurrency wallets, manipulating transactions, and collecting personal information. The stealthy nature of Daam makes it a serious threat for Android users.

Known Variants

Known Variants

At this time, specific variants of Daam malware have not been widely reported, likely due to its continuously evolving nature. Its flexibility and ability to integrate with legitimate applications make it difficult to track specific versions, but its core functionalities remain the same—data theft and surveillance.

At this time, specific variants of Daam malware have not been widely reported, likely due to its continuously evolving nature. Its flexibility and ability to integrate with legitimate applications make it difficult to track specific versions, but its core functionalities remain the same—data theft and surveillance.

Mitigation Strategies

Mitigation Strategies

Avoid downloading apps from untrusted or unofficial sources, always using reputable app stores like Google Play. Regularly update your device’s operating system and apps to ensure they have the latest security patches. Use a reputable antivirus and anti-malware application to detect and block malicious software like Daam. Be cautious of apps requesting unnecessary permissions, particularly those that ask for access to sensitive data or features like the camera or microphone.

Targeted Industries or Sectors

Targeted Industries or Sectors

Daam primarily targets individual Android users, with a focus on those who are involved in cryptocurrency transactions. However, its ability to steal sensitive information makes it a potential threat to anyone using Android devices, across various industries. It can impact anyone who stores personal, financial, or confidential data on their phones.

Daam primarily targets individual Android users, with a focus on those who are involved in cryptocurrency transactions. However, its ability to steal sensitive information makes it a potential threat to anyone using Android devices, across various industries. It can impact anyone who stores personal, financial, or confidential data on their phones.

Associated Threat Actors

Associated Threat Actors

While the specific individuals or groups behind Daam remain unidentified, it is clear that the malware is being used by cybercriminals seeking to exploit sensitive data for financial gain. The malware is sold on underground forums, where attackers can purchase the tool to aid in their operations. This makes Daam part of the growing trend of Malware-as-a-Service (MaaS).

While the specific individuals or groups behind Daam remain unidentified, it is clear that the malware is being used by cybercriminals seeking to exploit sensitive data for financial gain. The malware is sold on underground forums, where attackers can purchase the tool to aid in their operations. This makes Daam part of the growing trend of Malware-as-a-Service (MaaS).

References

    Ready to uncover malware networks?

    We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

    Book your Demo Today

    Banner background image

    Ready to uncover malware networks?

    We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

    Book your Demo Today

    Banner background image

    Ready to uncover malware networks?

    We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

    Book your Demo Today

    Banner background image
    Daam Malware: Android Threat Analysis and Mitigation

    Threat Hunting Platform - Hunt.io

    Products

    Web Interface

    Feeds

    Enrichment API

    Features

    AttackCapture™

    HuntSQL™

    New

    C2 Detection

    IOC Hunter

    Phishing Infrastructure

    Resources

    Change Log

    Terms & Conditions

    Privacy Policy

    Support Docs

    Malware Families

    Latest News

    Hunt.io 2024 Year in Review Key Product & Research Highlights

    Hunt.io 2024 Year in Review Key Product & Research Highlights

    Dec 20, 2024

    Oyster’s Trail: Resurgence of Infrastructure Linked to Ransomware and Cybercrime Actors

    Oyster’s Trail: Resurgence of Infrastructure Linked to Ransomware and Cybercrime Actors

    Dec 12, 2024

    “Million OK !!!!” and the Naver Facade: Tracking Recent Suspected Kimsuky Infrastructure

    “Million OK !!!!” and the Naver Facade: Tracking Recent Suspected Kimsuky Infrastructure

    Dec 10, 2024

    ©2024

    Hunt Intelligence, Inc.

    Daam Malware: Android Threat Analysis and Mitigation

    Threat Hunting Platform - Hunt.io

    Products

    Web Interface

    Feeds

    Enrichment API

    Features

    AttackCapture™

    HuntSQL™

    New

    C2 Detection

    IOC Hunter

    Phishing Infrastructure

    Resources

    Change Log

    Terms & Conditions

    Privacy Policy

    Support Docs

    Malware Families

    Latest News

    Hunt.io 2024 Year in Review Key Product & Research Highlights

    Hunt.io 2024 Year in Review Key Product & Research Highlights

    Dec 20, 2024

    Oyster’s Trail: Resurgence of Infrastructure Linked to Ransomware and Cybercrime Actors

    Oyster’s Trail: Resurgence of Infrastructure Linked to Ransomware and Cybercrime Actors

    Dec 12, 2024

    “Million OK !!!!” and the Naver Facade: Tracking Recent Suspected Kimsuky Infrastructure

    “Million OK !!!!” and the Naver Facade: Tracking Recent Suspected Kimsuky Infrastructure

    Dec 10, 2024

    ©2024

    Hunt Intelligence, Inc.

    Daam Malware: Android Threat Analysis and Mitigation

    Threat Hunting Platform - Hunt.io

    Products

    Web Interface

    Feeds

    Enrichment API

    Features

    AttackCapture™

    HuntSQL™

    New

    C2 Detection

    IOC Hunter

    Phishing Infrastructure

    Resources

    Change Log

    Terms & Conditions

    Privacy Policy

    Support Docs

    Malware Families

    Latest News

    Hunt.io 2024 Year in Review Key Product & Research Highlights

    Hunt.io 2024 Year in Review Key Product & Research Highlights

    Dec 20, 2024

    Oyster’s Trail: Resurgence of Infrastructure Linked to Ransomware and Cybercrime Actors

    Oyster’s Trail: Resurgence of Infrastructure Linked to Ransomware and Cybercrime Actors

    Dec 12, 2024

    “Million OK !!!!” and the Naver Facade: Tracking Recent Suspected Kimsuky Infrastructure

    “Million OK !!!!” and the Naver Facade: Tracking Recent Suspected Kimsuky Infrastructure

    Dec 10, 2024

    ©2024

    Hunt Intelligence, Inc.