FRANKENSTEIN – A Virus that will destroy your Android Device within a Second
WARNING: Android users stay alert ‘FRANKENSTEIN’ may be present in your device too!
FRANKENSTEIN: It is a virus which is comprised of the worst features of different malware to form a dangerous threat. The malware blends features of ransomware, keyloggers and banking trojans to create a virus that can attack many fronts. Security Researchers from ThreatFabric discovered this malware. After the discovery, they said it appears to be related to the well-known LokiBot Android Banking Trojan.
KumarJeeru
FRANKENSTEIN: It is a virus which is comprised of the worst features of different malware to form a dangerous threat. The malware blends features of ransomware, keyloggers and banking trojans to create a virus that can attack many fronts. Security Researchers from ThreatFabric discovered this malware. After the discovery, they said it appears to be related to the well-known LokiBot Android Banking Trojan.
FRANKENSTEIN by MysteryBot: The Discovery:
Bleeping Computer: A ThreatFabric spokesperson said, “Based on our analysis of the code of both Trojans, we believe that there is indeed a link between the creator(s) of LokiBot and MysteryBot“. This clearly justifies that the MysteryBot is based on the LokiBot code. The MysteryBot is capable of taking controls of infected devices. It too has an ability to read messages, gather contact information and steal sensitive emails. While Android malware targets to attack the older versions of Android say Android KitKat, MysteryBot attacks the recent versions of Android say Android Oreo. It uses an overlay screen to display fake login pages on top of legitimate apps for the Google Mobile OS. By this, the Cybercriminals can easily steal the user credentials.
Credit: Security Affairs
MysteryBot vs other Malware:
- First of all, the other malware takes a screenshot and send it to their server. Whereas, MysteryBot records the location of Touch Gesture. After recording it tries to guess what the user has pressed based on the touch location.
- Furthermore, MysteryBox has a ransomware module which encrypts files and passwords and stores them. Whereas, the other Malware does not have any such module to encrypt and store files and password.
Credit: Threat Fabric
Reports from ThreatFabric Researchers’:
ThreatFabric Researchers wrote:“The enhanced overlay attacks also running on the latest Android Versions combined with advanced Keylogging and the potential under-development features will allow MysteryBot to harvest a broad set of personally identifiable information in order to perform fraud.That’s it. Stay Secure!
MysteryBot isn’t still in wide-spread and is still in development.
Android users should be aware of such apps which asks a lot of permissions.
The current version of MysteryBot has been designed as a Flash Player app on Android.”
KumarJeeru
Post a Comment
Post a Comment