Android Trojan Steals Data From Facebook Messenger, Skype, Other IM Clients

Faybert

Faybert

Level 24
Thread author
Verified
Top Poster
Well-known
Jan 8, 2017
1,318
Content source
https://www.bleepingcomputer.com/news/security/android-trojan-steals-data-from-facebook-messenger-skype-other-im-clients/
Security researchers have found a new Android malware strain that has been designed to steal data from mobile instant messaging clients.
This new trojan is quite simple in its design, researcher from cyber-security firm Trustlook said in a report published on Monday.
Trojan has only a handful of features
The trojan has only a few abilities. The first is to gain boot persistence by unpacking code from an infected app's resources. The code will attempt to modify the "/system/etc/install-recovery.sh" file, which if successful, would allow the malware execute with every boot.
Second, the malware can extract data from the following Android IM clients, data that it will later upload to a remote server. The malware retrieves the IP of this server from a local configuration file.
....
....
Click to expand...
Simple features, but advanced evasion techniques
Trustlook researchers say that despite the singular focus on stealing IM data, the malware uses a few advanced evasion techniques. For example, the malware uses anti-emulator and debugger detection techniques to evade dynamic analysis, and also hides strings inside its source code to thwart lackadaisical code reversing attempts.
...
...
Click to expand...
 
  • Like
Reactions: silversurfer, In2an3_PpG, Mariihh and 2 others
You must log in or register to reply here.

Similar threads

MuzzMelbourne
    • Like
    • +Reputation
    • Wow
Anatsa Android trojan now steals banking info from users in US, UK
Replies
0
Views
880
News Archive
MuzzMelbourne
MuzzMelbourne
MuzzMelbourne
    • Like
    • Wow
Warning: GravityRAT Android Trojan Steals WhatsApp Backups and Deletes Files
Replies
0
Views
812
News Archive
MuzzMelbourne
MuzzMelbourne
upnorth
    • +Reputation
    • Like
    • Wow
Android Malware steals credentials using Optical Character Recognition
Replies
0
Views
967
News Archive
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top