Check out Resource

Read Report
Report

Monokle Technical Report

Lookout discovery of sophisticated mobile malware that uses a new set of custom Android surveillanceware tools. Monokle was developed by a Russian military contractor that was sanctioned by the U.S. Government in connection to interference in the 2016 US presidential elections.

Monokle possesses remote access trojan (RAT) functionality, uses advanced data exfiltration techniques and has the ability to install an attacker-specified certificate to the trusted certificates store on an infected device that would facilitate man-in-the-middle (MITM) attacks.