Android banker Trojan with the standard banking capabilities such as overlays, SMS stealing. It also features ransomware functionality. Note, the network traffic is obfuscated the same way as in Android Bankbot.
|2021-06-10 ⋅ ZAYOTEM ⋅ |
LokiBot Technical Analysis Report
|2020-07-14 ⋅ SophosLabs Uncut ⋅ |
RATicate upgrades “RATs as a Service” attacks with commercial “crypter”
LokiBot BetaBot CloudEyE NetWire RC
|2020-01-27 ⋅ Yoroi ⋅ |
Aggah: How to run a botnet without renting a Server (for more than a year)
|2017-10 ⋅ Threat Fabric ⋅ |
LokiBot - The first hybrid Android malware
There is no Yara-Signature yet.