Related CherryBlos and FakeTrade Android Malware Involved in Scam Campaigns

28-Jul-23

Two new connected Android malware families engaged in cryptocurrency mining and financially motivated fraud activities targeting Android users were found by Trend Micro’s Mobile Application Reputation Service (MARS) team. The profile of this group specifically references the phishing website from which the malware was downloaded.

The initial effort made advantage of well-known social networking sites to offer phoney products. The adverts directed users to phishing websites where they were tricked into downloading and installing harmful Android apps. Because of the distinctive string utilised in its hijacking framework, the downloaded malware CherryBlos (AndroidOS_CherryBlos.GCL), also known as CherryBlos, can steal credentials associated to cryptocurrency wallets and change the addresses of victims while they make withdrawals.

Read More…