SYMBOLCOMMON_NAMEaka. SYNONYMS
apk.lokibot (Back to overview)

LokiBot


Android banker Trojan with the standard banking capabilities such as overlays, SMS stealing. It also features ransomware functionality. Note, the network traffic is obfuscated the same way as in Android Bankbot.

References
2024-04-15Positive TechnologiesAleksandr Badaev, Kseniya Naumova
SteganoAmor campaign: TA558 mass-attacking companies and public institutions all around the world
LokiBot 404 Keylogger Agent Tesla CloudEyE Formbook Remcos XWorm
2024-03-27Twitter (@embee_research)Embee_research
Uncovering Malicious Infrastructure with DNS Pivoting
LokiBot XWorm
2023-08-03KasperskyKaspersky
What’s happening in the world of crimeware: Emotet, DarkGate and LokiBot
LokiBot DarkGate Emotet
2022-07-25muha2xmadMuhammad Hasan Ali
PDF Analysis of Lokibot malware
LokiBot
2022-06-29Github (vc0RExor)Aaron Jornet Sales
Machete Weapons Lokibot - A Malware Report
LokiBot
2021-06-10ZAYOTEMBilal BAKARTEPE, Harun YAKUT, Sinan BAYKAN, Taha HİCRET
LokiBot Technical Analysis Report
LokiBot
2020-07-14SophosLabs UncutMarkel Picado, Sean Gallagher
RATicate upgrades “RATs as a Service” attacks with commercial “crypter”
LokiBot BetaBot CloudEyE NetWire RC
2020-01-27YoroiLuca Mella, Luigi Martire
Aggah: How to run a botnet without renting a Server (for more than a year)
LokiBot Azorult
2017-10-01Threat FabricNiels Croese, Pham Duy Phuc, Wesley Gahr
LokiBot - The first hybrid Android malware
LokiBot

There is no Yara-Signature yet.