Sunday 20 April 2014

Android/FakeToken.A

OTP forwarder dumped months ago.

Login:

Statistics:

Bots:

Bot:

Passwords:

Send a command:

Commands sent:

Apps:

Apps builder:

MD5s:
2d4770137ae0b91446fc2f99d9fdb2b0
f629adcfbcdd4622ad75337ec0b1a0ff
dd4ac55df6500352dd2cad340a36a40f
b9f9614775a54aa42f94eedbc4796446
1fababfd02ea09ae924cd0a7dbfb708c
bc8394bc9c6adbcfca3d450ee4ede44a
1cb87e1716c503bf499e529ee90e5b31
6db5cdd2648fcd445481cdfa2f2b065a
2ad6f8b8e4aaf88b024e1ddb99833b79
8bac185b6aff0bec4686b7f4cb1659c8

App settings:

Settings:

Second panel, a bit different, look like a 'test' one.
Statistics:

Phone:

Phone search:

Settings:

RSA Security talked also about it here

3 comments:

  1. Steven hi

    This bot is evolving for a long time from small article on underground forum "How to code Android bot" and nowdays has many clones.

    We also wrote about it http://intelcrawler.com/news-12

    I will provide you more details later :)

    ReplyDelete
  2. Why is there a custom interface for the app? Wouldn't it be better if it stayed hidden once installed?

    ReplyDelete
  3. I see that allmost of traget banks are the middle east ones

    ReplyDelete