ESET research uncovers an Android app that initially had no harmful features but months later turned into a spying tool
This week, ESET malware researcher Lukas Stefanko revealed how an initially legitimate Android app morphed into a malicious trojan that could steal users’ files and record surrounding audio from the device’s microphone and then exfiltrate it. The app, named iRecorder – Screen Recorder, was first listed in the Google Play Store in September 2021, with the malicious code added almost a year later. ESET research named the malware AhRat and it is a customization of the open-source AhMyth remote access trojan (RAT). The app was downloaded 50,000-plus times before it was detected by ESET and removed from the Android store by Google.
For a technical writeup, head over to our blogpost: Android app breaking bad: From legitimate screen recording to file exfiltration within a year
Connect with us on Facebook, Twitter, LinkedIn and Instagram.
- SEO Powered Content & PR Distribution. Get Amplified Today.
- PlatoAiStream. Web3 Data Intelligence. Knowledge Amplified. Access Here.
- Minting the Future w Adryenn Ashley. Access Here.
- Buy and Sell Shares in PRE-IPO Companies with PREIPO®. Access Here.
- Source: https://www.welivesecurity.com/videos/app-morphed-trojan-week-security-tony-anscombe/
- :is
- 2021
- 50
- 8
- a
- access
- added
- an
- and
- android
- app
- audio
- Bad
- before
- Breaking
- but
- by
- code
- could
- customization
- detected
- ESET Research
- exfiltration
- Features
- File
- Files
- First
- from
- Google Play
- Google Play Store
- had
- harmful
- head
- How
- HTTPS
- in
- initially
- into
- IT
- jpg
- later
- legitimate
- Listed
- malware
- microphone
- months
- Named
- no
- of
- open source
- our
- over
- plato
- Plato Data Intelligence
- PlatoData
- Play
- Play Store
- RAT
- record
- recording
- remote
- remote access
- Removed
- research
- researcher
- Revealed
- Screen
- security
- September
- spying
- store
- Surrounding
- Technical
- that
- The
- then
- times
- to
- Tony
- Trojan
- Turned
- us
- was
- week
- with
- within
- year
- zephyrnet