SYMBOLCOMMON_NAMEaka. SYNONYMS
apk.coper (Back to overview)

Coper

aka: ExobotCompact, Octo

Coper is a descendant of ExoBotCompat, which was a rewritten version of Exobot.
Malicious Coper apps have a modular architecture and a multi-stage infection mechanism. Coper has originally been spotted in Colombia but has since emerged in Europa as well.

References
2024-07-09SpamhausSpamhaus Malware Labs
Spamhaus Botnet Threat Update January to June 2024
Coper FluBot Hook Bashlite Mirai FAKEUPDATES AsyncRAT BianLian Cobalt Strike DCRat Havoc NjRAT QakBot Quasar RAT RedLine Stealer Remcos Rhadamanthys RisePro Sliver
2024-03-05Team CymruS2 Research Team
Coper / Octo - A Conductor for Mobile Mayhem… With Eight Limbs?
Coper
2023-02-08K7 SecurityBaran S
Play Store App Serves Coper Via GitHub
Coper
2022-11-25ResecurityResecurity
"In The Box" - Mobile Malware Webinjects Marketplace
Alien Cerberus Coper ERMAC Hydra
2022-07-29Trend MicroTrend Micro Mobile Team
Examining New DawDropper Banking Dropper and DaaS on the Dark Web
Coper DawDropper
2022-07-19Cert-AgIDCert-AgID
Analysis and technical insights on the Coper malware used to attack mobile devices
Coper
2022-06-28Twitter (@_icebre4ker_)Fr4
Revive and Coper are using similar phishing template and app
Coper
2022-04-09Bleeping ComputerBill Toulas
New Android banking malware remotely takes control of your device
Coper ExoBot
2022-04-08ThreatFabricThreatFabric
Look out for Octo's tentacles! A new on-device fraud Android Banking Trojan with a rich legacy
Coper ExoBot
2022-04-07The Hacker NewsRavie Lakshmanan
New Octo Banking Trojan Spreading via Fake Apps on Google Play Store
Coper
2022-03-24CybleincCyble
Coper Banking Trojan: Android Malware Posing As Google Play Store App Installer
Coper ExoBot
2021-12-31CERT.PLMarcin Dudek, Michał Praszmo
IKO activation - Malware campaign
Coper
2021-07-21Doctor Web@m0br3v
The Coper―a new Android banking trojan targeting Colombian users
Coper

There is no Yara-Signature yet.