A “new” generation Android banking Trojan being distributed on Google Play Store

The malware found at the end of October 2021 by the Cleafy Threat Intelligence Team. The Cleafy blogpost stated that the main goal of SharkBot is to initiate money transfers (from compromised devices) via Automatic Transfer Systems (ATS). This technique is an advanced attack technique which isn’t used regularly within Android malware. It is distributed via the Google Play Store as a fake Antivirus!

2 views0 comments

Recent Posts

See All

During Vidar infections, the initial malware retrieves legitimate DLL files hosted on the same C2 server used for data exfiltration. These files are not malicious, but they are used by the Vidar malw