216.73.217.86

BingoMod: The new android RAT that steals money and wipes data

· Published 02/08/2024 08:46 · Modified 02/08/2024 09:03

Export JSON

Essential information

Published
02/08/2024 08:46
Modified
02/08/2024 09:03
Tags
2024-08-02 android banking bingomod fraud rat
Related entities
3 observables, 5 techniques (mitre), 1 malware, 2 others

Description

In late May 2024, a new Remote Access Trojan () named emerged, aiming to initiate fraudulent money transfers from compromised devices using a technique called On-Device (ODF). After installation, steals sensitive information, conducts overlay attacks, and provides remote control capabilities to threat actors. Once a successful is completed, the infected device is typically wiped clean to hinder forensic investigations. targets English, Romanian, and Italian users and employs obfuscation techniques to evade detection. While still in development, it exhibits capabilities similar to other trojans like Medusa and Copybara.

External references