SoumniBot: the new Android banker’s unique techniques


The creators of widespread malware programs often employ various tools that hinder code detection and analysis, and Android malware is no exception.

As an example of this, droppers, such as Badpack and Hqwar, designed for stealthily delivering Trojan bankers or spyware to smartphones, are very popular among malicious actors who attack mobile devices. That said, we recently discovered a new banker, SoumniBot, which targets Korean users and is notable for an unconventional approach to evading analysis and detection, namely obfuscation of the Android manifest.

Read more…
Source: Kaspersky


Sign up for our Newsletter


Related:

  • ‘Glitch’ at Ethiopia’s biggest bank sees customers withdraw millions that isn’t theirs

    March 19, 2024

    Ethiopia’s largest bank is struggling to recoup millions of dollars after a glitch over the weekend allowed customers to withdraw unlimited funds, according to local media reports. More than $40 million was reportedly withdrawn from the state-owned Commercial Bank of Ethiopia or transferred to other banks, as customers discovered they could withdraw more than their total ...

  • Experian Is Trying To Force WhatsApp To Hand Over User Data In An ‘Odd’ Court Battle

    March 19, 2024

    Experian, the $40 billion credit monitoring company, has asked a U.S. judge to force WhatsApp to provide users’ call and message records to aid it in fighting separate lawsuits, according to court records obtained by Forbes. In February, Experian sent two subpoenas to WhatsApp, asking for information that included all phone numbers and call and message ...

  • Cybercrime Atlas: International effort to disrupt cybercrime moves into operational phase

    March 14, 2024

    The Cybercrime Atlas, a massive undertaking that aims to disrupt cybercriminals across the globe, enters its operational phase in 2024, two years after organizers laid the groundwork at the RSA Conference.… Its members now include 20-plus law enforcement agencies, private-sector security companies and incident responders, financial institutions, NGOs, and academics. Over the past year, the investigations ...

  • FBI Report Reveals Americans Lost Staggering $3.94 Billion to Crypto Investment Scams in 2023

    March 9, 2024

    The surge in cryptocurrency scams in 2023, as reported by the FBI, underscores the growing prevalence of digital currency in online crime. With losses reaching $3.94 billion, a 53% increase from the previous year, these scams represent a significant portion of overall investment frauds, which amounted to $4.57 billion. Cryptocurrency scams encompass a range of deceptive ...

  • Jersey data breach leaks personal information

    March 7, 2024

    A data breach at Jersey’s Financial Services Commission has allowed access to non-public names and addresses. The organisation confirmed a “vulnerability” was detected in its Registry system on 23 January. It said the leak did not link any individuals to registered entities or roles held and that it had separately written to those whose names and addresses ...

  • Italy privacy watchdog fines Unicredit $3.1 million for data breach

    March 7, 2024

    Italy’s data protection authority has fined UniCredit, the country’s second-largest bank, 2.8 million euros ($3.1 million) for a data breach case in 2018 affecting thousands of customers and former customers, it said on Thursday. The bank responded that it would appeal the decision to court, adding that no bank data had been compromised and the incident ...