McAfee Security Company now reports that the AsiaHitGroup Internet criminal gang has once again come back with a new trick to steal users’ money, using a piece of re-aggregated malware that it used in the past on Google Play.
McAfee virus analysts learned about the resumption of dangerous malware activity Sonvpay.C, distributed through Google Play under the guise of various utilities for Android-smartphones. The modified version of the trojan is more skillfully hidden from the user of the infected device, preventing its detection.
Sonvpay.C falls on devices under the guise of flash applications, QR code scanners, and desktop image catalogs. Once installed, the Trojan sends a notification to the user about the need for an update, the consent to download which is signed by the victim on paid mailings and services.
Unlike previous versions of Sonvpay.C, the new iteration does not use the SMS system, preferring it to WAP subscriptions. The service of WAP subscriptions allows you to subscribe to various services of content providers but does not require the sending of any messages, leaving no visible traces of fraudsters on the device.
15 Malicious Applications That Steal Money
In total, McAfee experts identified 15 applications with built-in Sonvpay.C, most of which were downloaded from 10 to 50 thousand times, and the total damage from the activities of scammers was about $ 100 thousand. Most often, the victims of the Trojan were residents of Kazakhstan and Malaysia, which accounted for most of the installations.
According to McAfee, fraudulent applications were used in Kazakhstan and Malaysia, but if Sonvpay detects that the device is not in one of these areas, it will still try to send an SMS to a premium service. These applications have been published on the Internet since January 2018, and McAfee calculated that AsiaHitGroup could have obtained through this software 60,500 about 145,000 dollars of different victims.
Ikechukwu Onu is a writer, front-end dev, and digital junkie with a profound interest in all things tech. When not reviewing gadgets or apps, he enjoys contributing in groups and forums, tinkering with websites, and hanging out with friends.