Security News > 2021 > February > Android Devices Hunted by LodaRAT Windows Malware
A newly discovered variant of the LodaRAT malware, which has historically targeted Windows devices, is being distributed in an ongoing campaign that now also hunts down Android devices and spies on victims.
Along with this, an updated version of LodaRAT for Windows has also been identified; both versions were seen in a recent campaign targeting Bangladesh, researchers said.
While previous versions of LodaRAT contained credential-stealing capabilities that researchers speculated were used for draining victims' bank accounts, these newer versions come with a full roundup of information-gathering commands.
The Android version of the LodaRAT malware, which researchers call "Loda4Android," is "Relatively simple when compared to other Android malware," said researchers.
The underlying command-and-control protocol follows the same design pattern as the Windows version, said researchers - suggesting that the C2 code will be able to handle both versions.
The new version of the LodaRAT that targets Windows systems is version 1.1.8.
News URL
https://threatpost.com/android-devices-lodarat-windows/163769/
Related news
- New Malware Technique Could Exploit Windows UI Framework to Evade EDR Tools (source)
- Germany sinkholes BadBox malware pre-loaded on Android devices (source)
- Germany blocks BadBox malware loaded on 30,000 Android devices (source)
- Android malware found on Amazon Appstore disguised as health app (source)
- BadBox malware botnet infects 192,000 Android devices despite disruption (source)
- New FireScam Android malware poses as RuStore app to steal data (source)
- New FireScam Android data-theft malware poses as Telegram Premium app (source)
- FireScam Android Malware Poses as Telegram Premium to Steal Data and Control Devices (source)
- FBI wipes Chinese PlugX malware from thousands of Windows PCs in America (source)
- DoNot Team Linked to New Tanzeem Android Malware Targeting Intelligence Collection (source)