AIVARAT Mobile Malware

Android 7+ Devices Become FIDO Certified

AIVARAT is the name of a newly detected strain of mobile malware. The new threat is a remote access trojan or a RAT, as the name implies.

The capabilities of the new malware are considerable. AIVARAT can scrape and exfiltrate a number of data sets from the compromised device, including system data, installed app lists, and local storage file lists. The malware can also exfiltrate any media file found on the compromised device.

AIVARAT can access call logs and contact lists on the device and can both intercept and read and send text messages. There are reports that the malware is also capable of logging keypresses on the virtual keyboard and displaying phishing screens mimicking the login interfaces of legitimate apps.

There seems to be at least some sort of persistence with the malware. While it will not run with every device boot by default, receiving any new notification will re-trigger and run it again.

The RAT also has a ransomware-like module that can encrypt files on the device and lock it with a PIN code.

By Zaib
July 15, 2022
Android Malware
English
July 15, 2022
Android Malware

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Pinaview is a Fully-Featured Adware App

7 months ago

What is the RSEngineSvc.exe File and Process?

12 months ago

'American Express - Update Your Account Information' Email Scam

2 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

4 months ago

Aluc Service Cryptomining Malware

1 month ago

Related Posts

Android Malware

Predator Mobile Malware Targets Android Phones

Security researchers with Google's Threat Analysis Group (TAG) have recently published detailed information on a piece of mobile malware affecting Android devices. The mobile malware is named PEDATOR and was used in... Read more

May 20, 2022
Android Malware

Is Hermit Mobile Malware On Your Android Device?

Google's Threat Analysis Group published their findings on a new campaign leveraging the Hermit mobile malware. Hermit is a piece of mobile malware with significant spying capabilities that was previously associated... Read more

June 28, 2022
Android Malware

Exobot Android Malware

Exobot is the name of a newly discovered piece of malware that targets Android devices and exhibits features characteristic of infostealers, banking trojans, and botnets. Android malware is commonly focused on... Read more

June 13, 2022
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2023 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.