Google Play Store Apps Launching Banking Malware With Sophisticated Evasion Techniques
Google Play store continuously floods with various malicious apps including adware, spyware, and malware that targets millions of Android users. Google Play Store Apps Launching Banking Malware With Sophisticated Evasion Techniques
These new malicious apps are intended to upload into the Google Play store to infect Android users with Anubis Banking Malware. Both Apps contained thousands of downloads that affected various countries’ users including Japan, Australia.US, Italy, and more.
These malicious apps are just a little ahead of normal evasion techniques and take advantage of users and their activities in order to hide them using device motion.
Since the motion sensor always running on Android mobile, it consumes little amount of data.
But the sandbox for scanning malware is an emulator with no motion sensors.
So the developer assumes that if there will be no sensor then the app is running under sandbox. So the app will be immediately stopped using the “kill” command and the malicious code will not run.
Initial analysis of Payload indicates that the code is similar to the Anubis Banking malware. And it connected to the C&C server with Anubis linked aserogeege.space domain.
Along with this 18 other malicious domains are being operated under the same attacker control. And the domains change IP addresses quite frequently.
Anubis malware basically posed as a legitimate app and steal the user’s bank account. Information by request to grant permission to banking apps.
Unlike other banking malware that launches a fake overlay screen. And monitor the user activities when they enter the key inputs
But Anubis malware little different that contains a built-in keylogger future
that can simply steal a user’s account credentials by logging the keystrokes.
Apart from this, it has the ability to take a screenshot of the victim’s mobile in order to steal the user’s data.
According to Trend Micro research, Our data shows that the latest version of. Anubis has been distributed to 93 different countries and targets the users of 377 variations. Financial apps to farm account details. We can also see that, if Anubis successfully runs, an attacker would. Gain access to contact lists as well as location.
Also, it can perform other malicious activities including recording audio, sending SMS messages, making calls, and altering external storage. Anubis can use these permissions to send spam messages to contacts, call numbers from the device, and other malicious activities.
Henceforth, WE WISH TO ANNOUNCE THAT OUR SERVICES ARE NOT AVAILABLE TO PEOPLE FROM NIGERIA AND INDIA. THESE ARE USELESS TIME WASTERS AND THIEVES TRYING TO BEG OR SCAM US OF OUR PRODUCTS. OUR SERVICES ARE NOT FREE AND PAYMENT IS UPFRONT
A LOT OF FOOLS FROM NIGERIA AND INDIA. on the off chance that YOU DON’T TRUST TO USE OUR SERVICES, DON’T CONTACT US AS WE HAVE NO FREE SERVICE
HI BUYERS, WE ARE A PROFESSIONAL CARDING AND HACKING TEAM. HOVATOOLS HAS BEEN AROUND SINCE THE TIME OF EVO MARKET, ALPHABAY, WALLSTREET MARKET AND MORE. WE REMAIN STRONG AND RELIABLE IN THE INDUSTRY, ALWAYS PROVIDING YOU WITH THE BEST QUALITY TOOLS TO HELP YOU MAKE MONEY AND MAXIMIZE PROFIT IN THE FRAUD GAME.
Buy Fresh Credit Cards for Carding, BIN LIST Buy Bank Login, RDP, Buy Hacked Paypal accounts. Contact us to buy all tools and carding software. CLICK HERE TO VISIT OUR SHOP
Buy Socks 5, Email Leads, Buy Latest CC to Bitcoin Cashout Guide, Buy Hacked Zelle transfer , Western Union Money Transfer Hack, Buy Hacked Money Transfer service to your bank account.
Enroll for Paid private Carding Class.