I did see this article recently, but was concentrating on other news that came out first. But I finally got a chance to read the article and I’m not necessarily surprised that joker is in this list of threats that people can get.
Anatsa (aka “Teabot” targets financial institutions from around the world. Since February of last year, the article claims that over 150,000 infections have been placed. What helps this malware is that it has four different steps to get payloads on the system that it can use, and figures are available to show you what they do.
The steps are: • Dropper app retrieves configuration and essential strings from the C2 server, • DEX file containing malicious dropper code is downloaded and activated on the device, • Configuration file with Anatsa payload URL is downloaded and • DEX file fetches and installs the malware payload (APK), completing the infection.
For more details, please read the article Over 90 malicious Android apps with 5.5M installs found on Google Play and stay safe.
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.