How To Remove Pegasus Trojan [Virus Removal Guide]

Pegasus is a banking Trojan that disguises itself as a legitimate app, tricking users into downloading it on their Android device, then it infects the device, steals sensitive financial information and personal information, sends text messages, takes control of the device, downloads other malicious software, and participates in other malicious activities such as DDoS attacks.

Advertisement

Pegasus Malware (Android)

 

What is Pegasus Trojan?

Advertisement

Pegasus is a Trojan horse that it disguises itself as a legitimate app, tricking users into downloading and installing it on their devices. Once installed, the Pegasus malware begins to infect the device and perform various malicious actions, such as spying on the user, stealing personal information, and sending text messages.

Advertisement
Advertisement

One of the primary goals of Pegasus malware is to steal sensitive financial information, such as banking login credentials and crypto exchange passwords.

When a device is infected with the Pegasus Trojan, the malware will gain access to the device’s system and start to collect personal information. This can include login credentials for banking and crypto exchange accounts, credit card information, and other sensitive data. The malware may also take control of the device and use it to download and install other malicious software, further compromising the security of the device.

In addition to stealing personal information, Pegasus malware can also send text messages from the infected device, which can lead to additional costs for the user. The malware may also use the infected device to perform other malicious actions, such as sending spam messages or participating in DDoS attacks.

How was Pegasus Trojan installed on my device?

Advertisement

Pegasus malware is typically distributed through third-party app stores, phishing emails, or malicious links. Therefore, one of the best ways to protect your device from Pegasus malware is to only download apps from the official Google Play Store and to be cautious when clicking on links in emails or text messages.

If you suspect your device might be infected with this type of malware, we recommend that you reset your device to factory settings and change all of your login credentials for any accounts that may have been compromised by this Trojan. This includes banking and crypto exchange accounts, as well as any other accounts that may have been accessed by the malware.

Advertisement

To check your device for malware and remove it for free, please use the guide below.

Removal Instructions for Pegasus Trojan

Advertisement
This malware removal guide may appear overwhelming due to the number of steps and numerous programs that are being used. We have only written it this way to provide clear, detailed, and easy-to-understand instructions that anyone can use to remove malware for free.
Please perform all the steps in the correct order. If you have any questions or doubt at any point, stop and ask for our assistance.
To remove Pegasus Trojan from your device, follow these steps:

STEP 1: Uninstall malicious apps

In this first step, we will check if any malicious apps are installed on your phone. Sometimes browser hijackers or adware apps can have usable Uninstall entries that can be used to remove these apps.

  1. Open the “Settings” menu.

    Tap on the “Settings” app from your phone menu or home screen.
    Settings app in Android

  2. Tap on “Apps”.

    When the “Settings” menu opens, tap on “Apps” (or “App Manager”) to see all the installed applications on your phone.
    Tap on Apps

  3. Find the malicious app.

    The “Apps” screen will be displayed with a list of all the applications that are installed on your phone. Scroll through the list and look out for any suspicious app that could be behind all the drama – anything you don’t remember downloading or that doesn’t sound like a genuine program.
    Most often, cyber criminals hide malware inside video or photo editing apps, weather apps, and camera apps.

    Search trough the Apps list for the malicious app
  4. Uninstall the malicious app

    When you find a suspicious or malicious app, tap on it to uninstall it. This won’t start the app but will open up the app details screen. If the app is currently running press the “Force stop” button, then tap on “Uninstall”.
    Uninstall malicious app from Android

    A confirmation dialog should be displayed to confirm you want to uninstall the app, tap on “OK” to remove the malicious app from your phone.

    Confirm uninstall app from Android phone

STEP 2: Reset browsers back to default settings

In this second step, we will reset your browser to its default settings to remove spam notifications, unwated search redirects, and restore its factory settings

Resetting the browser settings to their default it’s an easy task on Windows or Mac computers; however, when it comes to Android, this can’t be done directly because it’s not an option built-in into the browser settings. Restoring the browser settings on Android can be done by clearing the application data. This will remove all the cookies, cache, and other site settings that may have been saved. So let’s see how we can restore your browser to its factory settings.

Chrome for AndroidFirefoxOperaSamsung Internet BrowserMicrosoft Edge

Remove malware from Chrome for Android

To reset Chrome for Android to its default settings, follow the below steps:

  1. Open the “Settings” menu.

    Tap on the “Settings” app from your phone menu or home screen.
    Settings app in Android

  2. Tap on “Apps”.

    When the “Settings” menu opens, tap on “Apps” (or “App Manager”) to see all the installed applications on your phone.
    Tap on Apps

  3. Find and tap on Chrome.

    The “Apps” screen will be displayed with a list of all the apps installed on your phone. Scroll through the list until you find the Chrome app, then tap on it to open the app’s details.
    Tap on Chrome

  4. Tap “Storage”.

    When Chrome’s app info menu is displayed, tap on “Storage“.
    Tap on Storage

  5. Tap “Manage Space”.

    Under the storage settings, you will get two options — Manage Space and Clear Cache. Tap on “Manage Space“.
    Tap on Manage Storage

  6. Tap “Clear all data”.

    Tap “Clear all data” to delete all Chrome’s data including accounts, bookmarks, and your settings to reset the default settings.
    Tap on Clear All Data

  7. Confirm by tapping “Ok”.

    A confirmation dialog should now be displayed, detailing the components that will be restored to their default state should you continue with the reset process. To complete the restoration process, tap “Ok“.
    Tap Ok to restore default settings

Remove malware from Firefox for Android

To reset Firefox for Android to its default settings, follow the below steps:

  1. Open the “Settings” menu.

    Tap on the “Settings” app from your phone menu or home screen.
    Settings app in Android

  2. Tap on “Apps”.

    When the “Settings” menu opens, tap on “Apps” (or “App Manager”) to see all the installed applications on your phone.
    Tap on Apps

  3. Find and tap on Firefox.

    The “Apps” screen will be displayed with a list of all the apps installed on your phone. Scroll through the list until you find the Firefox app, then tap on it to open the app’s details.
    Search trough the Apps list for the malicious app

  4. Tap “Storage”.

    When Firefox’s app info menu is displayed, tap on “Storage“.
    Firefox - Tap on Storage

  5. Tap “Manage Space”.

    Under the storage settings, you will get two options — Manage Space and Clear Cache. Tap on “Manage Space“.
    Firefox - Tap on Manage Storage

  6. Tap “Clear all data”.

    Tap “Clear all data” to delete all Firefox data including accounts, bookmarks, and your settings to reset the default settings.
    Firefox - Tap on Clear All Data

  7. Confirm by tapping “Ok”.

    A confirmation dialog should now be displayed, detailing the components that will be restored to their default state should you continue with the reset process. To complete the restoration process, tap “Ok“.

Remove malware from the Opera browser

To reset the Opera browser to its default settings, follow the below steps:

  1. Open the “Settings” menu.

    Tap on the “Settings” app from your phone menu or home screen.
    Settings app in Android

  2. Tap on “Apps”.

    When the “Settings” menu opens, tap on “Apps” (or “App Manager”) to see all the installed applications on your phone.
    Tap on Apps

  3. Find and tap on Opera.

    The “Apps” screen will be displayed with a list of all the apps installed on your phone. Scroll through the list until you find the Opera app, then tap on it to open the app’s details.
    Search trough the Apps list for the malicious app

  4. Tap “Storage”.

    When Opera’s app info menu is displayed, tap on “Storage“.
    Opera - Tap on Storage

  5. Tap “Manage Space”.

    Under the storage settings, you will get two options — Manage Space and Clear Cache. Tap on “Manage Space“.
    Opera - Tap on Manage Storage

  6. Tap “Clear all data”.

    Tap “Clear all data” to delete all Opera’s data including accounts, bookmarks, and your settings to reset the default settings.
    Opera - Tap on Clear All Data

  7. Confirm by tapping “Ok”.

    A confirmation dialog should now be displayed, detailing the components that will be restored to their default state should you continue with the reset process. To complete the restoration process, tap “Ok“.

Remove malware from Samsung Internet Browser

To reset the Samsung Internet Browser to its default settings, follow the below steps:

  1. Open the “Settings” menu.

    Tap on the “Settings” app from your phone menu or home screen.
    Settings app in Android

  2. Tap on “Apps”.

    When the “Settings” menu opens, tap on “Apps” (or “App Manager”) to see all the installed applications on your phone.
    Tap on Apps

  3. Find and tap on Samsung Internet Browser.

    The “Apps” screen will be displayed with a list of all the apps installed on your phone. Scroll through the list until you find the Samsung Internet Browser app, then tap on it to open the app’s details.
    Search trough the Apps list for the malicious app

  4. Tap “Storage”.

    When the Samsung Internet Browser’s app info menu is displayed, tap on “Storage“.
    Samsung Internet Browser - Tap on Storage

  5. Tap “Manage Space”.

    Under the storage settings, you will get two options — Manage Space and Clear Cache. Tap on “Manage Space“.
    Samsung Internet Browser - Tap on Manage Storage

  6. Tap “Clear all data”.

    Tap “Clear all data” to delete all Samsung Internet Browser’s data including accounts, bookmarks, and your settings to reset the default settings.
    Samsung Internet Browser - Tap on Clear All Data

  7. Confirm by tapping “Ok”.

    A confirmation dialog should now be displayed, detailing the components that will be restored to their default state should you continue with the reset process. To complete the restoration process, tap “Ok“.

Remove malware from Microsoft Edge for Android

To reset the Microsoft Edge for Android to its default settings, follow the below steps:

  1. Open the “Settings” menu.

    Tap on the “Settings” app from your phone menu or home screen.
    Settings app in Android

  2. Tap on “Apps”.

    When the “Settings” menu opens, tap on “Apps” (or “App Manager”) to see all the installed applications on your phone.
    Tap on Apps

  3. Find and tap on Microsoft Edge.

    The “Apps” screen will be displayed with a list of all the apps installed on your phone. Scroll through the list until you find the Microsoft Edge app, then tap on it to open the app’s details.
    Search trough the Apps list for the malicious app

  4. Tap “Storage”.

    When the Microsoft Edge’s app info menu is displayed, tap on “Storage“.
    Microsoft Edge - Tap on Storage

  5. Tap “Manage Space”.

    Under the storage settings, you will get two options — Manage Space and Clear Cache. Tap on “Manage Space“.
    Microsoft Edge - Tap on Manage Storage

  6. Tap “Clear all data”.

    Tap “Clear all data” to delete all Microsoft Edge’s data including accounts, bookmarks, and your settings to reset the default settings.
    Microsoft Edge - Tap on Clear All Data

  7. Confirm by tapping “Ok”.

    A confirmation dialog should now be displayed, detailing the components that will be restored to their default state should you continue with the reset process. To complete the restoration process, tap “Ok“.

STEP 3: Use Malwarebytes for Android to remove malicious apps

In this final step, we will install Malwarebytes for Android to scan and remove malicious apps from your phone or tablet.

Malwarebytes for Android automatically detects and removes dangerous threats like malware and ransomware so you don’t have to worry about your most-used device being compromised. Aggressive detection of adware and potentially unwanted programs keeps your Android phone or tablet running smooth.

  1. Download Malwarebytes for Android.

    You can download Malwarebytes for Android by clicking the link below.

    MALWAREBYTES FOR ANDROID DOWNLOAD LINK
    (The above link will open a new page from where you can download Malwarebytes for Android)
  2. Install Malwarebytes for Android on your phone.

    In the Google Play Store, tap “Install” to install Malwarebytes for Android on your device.

    Tap Install to install Malwarebytes for Android

    When the installation process has finished, tap “Open” to begin using Malwarebytes for Android. You can also open Malwarebytes by tapping on its icon in your phone menu or home screen.
    Malwarebytes for Android - Open App

  3. Follow the on-screen prompts to complete the setup process

    When Malwarebytes will open, you will see the Malwarebytes Setup Wizard which will guide you through a series of permissions and other setup options.
    This is the first of two screens that explain the difference between the Premium and Free versions. Swipe this screen to continue.
    Malwarebytes Setup Screen 1
    Tap on “Got it” to proceed to the next step.
    Malwarebytes Setup Screen 2
    Malwarebytes for Android will now ask for a set of permissions that are required to scan your device and protect it from malware. Tap on “Give permission” to continue.
    Malwarebytes Setup Screen 3
    Tap on “Allow” to permit Malwarebytes to access the files on your phone.
    Malwarebytes Setup Screen 4

  4. Update database and run a scan with Malwarebytes for Android

    You will now be prompted to update the Malwarebytes database and run a full system scan.

    Malwarebytes fix issue

    Click on “Update database” to update the Malwarebytes for Android definitions to the latest version, then click on “Run full scan” to perform a system scan.

    Update database and run Malwarebytes scan on phone

  5. Wait for the Malwarebytes scan to complete.

    Malwarebytes will now start scanning your phone for adware and other malicious apps. This process can take a few minutes, so we suggest you do something else and periodically check on the status of the scan to see when it is finished.
    Malwarebytes scanning Android for Vmalware

  6. Click on “Remove Selected”.

    When the scan has been completed, you will be presented with a screen showing the malware infections that Malwarebytes for Android has detected. To remove the malicious apps that Malwarebytes has found, tap on the “Remove Selected” button.
    Remove malware from your phone

  7. Restart your phone.

    Malwarebytes for Android will now remove all the malicious apps that it has found. To complete the malware removal process, Malwarebytes may ask you to restart your device.

Your computer should now be free of the Pegasus Trojan Trojan and other malicious programs.

If your current antivirus allowed a malicious app on your phone, you may want to consider purchasing the full-featured version of Malwarebytes to protect against these types of threats in the future.
If you are still having problems with your phone after completing these instructions, then please follow one of the steps:

Advertisement
How to Stay Safe Online

Here are 10 basic security tips to help you avoid malware and protect your device:

  1. Use a good antivirus and keep it up-to-date.

    Shield Guide

    It's essential to use a good quality antivirus and keep it up-to-date to stay ahead of the latest cyber threats. We are huge fans of Malwarebytes Premium and use it on all of our devices, including Windows and Mac computers as well as our mobile devices. Malwarebytes sits beside your traditional antivirus, filling in any gaps in its defenses, and providing extra protection against sneakier security threats.

  2. Keep software and operating systems up-to-date.

    updates-guide

    Keep your operating system and apps up to date. Whenever an update is released for your device, download and install it right away. These updates often include security fixes, vulnerability patches, and other necessary maintenance.

  3. Be careful when installing programs and apps.

    install guide

    Pay close attention to installation screens and license agreements when installing software. Custom or advanced installation options will often disclose any third-party software that is also being installed. Take great care in every stage of the process and make sure you know what it is you're agreeing to before you click "Next."

  4. Install an ad blocker.

    Ad Blocker

    Use a browser-based content blocker, like AdGuard. Content blockers help stop malicious ads, Trojans, phishing, and other undesirable content that an antivirus product alone may not stop.

  5. Be careful what you download.

    Trojan Horse

    A top goal of cybercriminals is to trick you into downloading malware—programs or apps that carry malware or try to steal information. This malware can be disguised as an app: anything from a popular game to something that checks traffic or the weather.

  6. Be alert for people trying to trick you.

    warning sign

    Whether it's your email, phone, messenger, or other applications, always be alert and on guard for someone trying to trick you into clicking on links or replying to messages. Remember that it's easy to spoof phone numbers, so a familiar name or number doesn't make messages more trustworthy.

  7. Back up your data.

    backup sign

    Back up your data frequently and check that your backup data can be restored. You can do this manually on an external HDD/USB stick, or automatically using backup software. This is also the best way to counter ransomware. Never connect the backup drive to a computer if you suspect that the computer is infected with malware.

  8. Choose strong passwords.

    lock sign

    Use strong and unique passwords for each of your accounts. Avoid using personal information or easily guessable words in your passwords. Enable two-factor authentication (2FA) on your accounts whenever possible.

  9. Be careful where you click.

    cursor sign

    Be cautious when clicking on links or downloading attachments from unknown sources. These could potentially contain malware or phishing scams.

  10. Don't use pirated software.

    Shady Guide

    Avoid using Peer-to-Peer (P2P) file-sharing programs, keygens, cracks, and other pirated software that can often compromise your data, privacy, or both.

To avoid potential dangers on the internet, it's important to follow these 10 basic safety rules. By doing so, you can protect yourself from many of the unpleasant surprises that can arise when using the web.

Leave a Comment