Open-Source L3MON RAT Goes After Android Users

L3MON RAT is an open-source piece of malware that is meant to run on Android devices. The payload being publicly available means that any cybercriminal can compile and start using it to infect Android devices worldwide. Recently, Android antivirus products identified a new campaign aiming to spread the L3MON RAT Malware. The criminals are using fake copies of an app called 'Sathi Chat' to deliver the malicious payload. The APK installers are hosted on 3rd-party sites and services, which serve unverified apps to Android users. You should always be careful when interacting with APK files from unknown sites, since they could easily bring malicious software to your device.

What is the L3MON RAT?

Remote Access Trojans (RATs) for Android are very rich in terms of features. They enable their operators to perform all sorts of tasks on the infected device, effectively allowing them to spy on the victim continuously. The L3MON RAT, in particular, has the following capabilities:

  • Download and run additional APKs.
  • View installed software and running Android services.
  • Fetch contacts.
  • Send text messages and access the inbox.
  • Explore the file system, and exfiltrate files to a remote server.
  • Log notifications and clipboard data.
  • Access hardware like the GPS sensor, microphone, and camera.

Needless to say, a hacker could use the L3MON RAT implant to spy on your conversations, steal your files, and much more. To protect your Android phone or tablet from the L3MON RAT, we suggest using an up-to-date anti-malware app for Android.

By Ruik
April 22, 2022
Android Malware
English
April 22, 2022
Android Malware

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Android Malware

SmsSpy Android Malware Goes After Japan-based Users

High-profile threat actors have been gradually paying more and more attention to mobile devices. One of the Advanced Persistent Threat (APT) actors specializing in attacks against Android mobile devices is Roaming... Read more

May 12, 2021
Android Malware

Remove Sandro RAT

Some malware families tend to be forgotten in time, but the Sandro RAT is not one of them. After it made its first appearance in 2014, it continues to be used to this very day. Its original developers are still... Read more

May 13, 2021
Android Malware

FakeCop Android Malware Goes After Users in Japan

The FakeCop Android Malware is a dangerous threat, which is currently targeting Android users in Japan. The implant is spread with the help of fake security applications that, in reality, try to hijack personal and... Read more

November 1, 2021
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.