KomeX is a newly discovered Android remote access trojan that poses significant risks to mobile devices. It is marketed by a threat actor known as ‘Gendirector’ and utilizes a sophisticated codebase originally derived from the BTMOB RAT. KomeX is notably aggressive in obtaining permissions from users, allowing it to effectively take control of infected devices immediately upon installation.
The RAT’s infection methods involve the use of malicious apps from unofficial marketplaces and social engineering tactics to lure victims into granting permissions. Once installed, KomeX can bypass Google Play Protect, which means it can operate without detection. Its capabilities include live screen streaming, audio and video capture, SMS interception, and remote application management, making it a powerful tool for cybercriminals. The malware’s design ensures persistent access even after attempted removal, showcasing a professional approach to malware development.
👉 Pročitaj original: Cyber Security News
