SYMBOLCOMMON_NAMEaka. SYNONYMS
apk.coper (Back to overview)

Coper

aka: ExobotCompact, Octo

Coper is a descendant of ExoBotCompat, which was a rewritten version of Exobot.
Malicious Coper apps have a modular architecture and a multi-stage infection mechanism. Coper has originally been spotted in Colombia but has since emerged in Europa as well.

References
2025-01-10SpamhausSpamhaus Malware Labs
Spamhaus Botnet Threat Update July to December 2024
Coper FluBot Hook Mirai FAKEUPDATES AsyncRAT BianLian Brute Ratel C4 Cobalt Strike DanaBot DCRat Havoc Latrodectus NjRAT Quasar RAT RedLine Stealer Remcos Rhadamanthys Sliver Stealc
2024-11-21IntrinsecCTI Intrinsec, Intrinsec
PROSPERO & Proton66: Uncovering the links between bulletproof networks
Coper SpyNote FAKEUPDATES GootLoader EugenLoader
2024-11-20IntrinsecEquipe CTI
PROSPERO & Proton66: Tracing Uncovering the links between bulletproof networks
Coper SpyNote FAKEUPDATES GootLoader EugenLoader IcedID Matanbuchus Nokoyawa Ransomware Pikabot
2024-10-10DomainToolsSteve Behm
Uncovering Domains Created by Octo2’s Domain Generation Algorithm
Coper
2024-10-04VirusBulletinThibault Seret
Octopus Prime: it didn't turn into a truck, but a widely spread Android botnet
Coper
2024-09-24ThreatFabricThreatFabric
Octo2: European Banks Already Under Attack by New Malware Variant
Coper
2024-09-09CleafyCleafy
Tweet about malware version Octo 2
Coper
2024-07-09SpamhausSpamhaus Malware Labs
Spamhaus Botnet Threat Update January to June 2024
Coper FluBot Hook Bashlite Mirai FAKEUPDATES AsyncRAT BianLian Cobalt Strike DCRat Havoc NjRAT QakBot Quasar RAT RedLine Stealer Remcos Rhadamanthys RisePro Sliver
2024-03-05Team CymruS2 Research Team
Coper / Octo - A Conductor for Mobile Mayhem… With Eight Limbs?
Coper
2023-02-08K7 SecurityBaran S
Play Store App Serves Coper Via GitHub
Coper
2022-11-25ResecurityResecurity
"In The Box" - Mobile Malware Webinjects Marketplace
Alien Cerberus Coper ERMAC Hydra
2022-07-29Trend MicroTrend Micro Mobile Team
Examining New DawDropper Banking Dropper and DaaS on the Dark Web
Coper DawDropper
2022-07-19Cert-AgIDCert-AgID
Analysis and technical insights on the Coper malware used to attack mobile devices
Coper
2022-06-28Twitter (@_icebre4ker_)Fr4
Revive and Coper are using similar phishing template and app
Coper
2022-04-09Bleeping ComputerBill Toulas
New Android banking malware remotely takes control of your device
Coper ExoBot
2022-04-08ThreatFabricThreatFabric
Look out for Octo's tentacles! A new on-device fraud Android Banking Trojan with a rich legacy
Coper ExoBot
2022-04-07The Hacker NewsRavie Lakshmanan
New Octo Banking Trojan Spreading via Fake Apps on Google Play Store
Coper
2022-03-24CybleincCyble
Coper Banking Trojan: Android Malware Posing As Google Play Store App Installer
Coper ExoBot
2021-12-31CERT.PLMarcin Dudek, Michał Praszmo
IKO activation - Malware campaign
Coper
2021-07-21Doctor Web@m0br3v
The Coper―a new Android banking trojan targeting Colombian users
Coper

There is no Yara-Signature yet.