The latest threat in Android world has been spotted and its a Trojan malware called Loapi, which has been termed as a jack of all trades to emphasize the breadth of nefarious things it can do.
Most notably, Loapi apps contain a module that mines Monero, a newer type of digital currency that’s less resource intensive than Bitcoin and most other crypto currencies.
Loapi, the malicious software, is so power-hungry that it can overheat your battery and fry your phone. The virus physically destroyed the Kaspersky Lab test phone just two days after being infected with it as claimed by Cybersecurity firm Kaspersky Lab
Kaspersky Lab wrote detailing how Loapi works and the range of pernicious activities it can carry out. “Because of the constant load caused by the mining module and generated traffic, the battery bulged and deformed the phone cover,”.
Loapi is Trojan malware that is most commonly picked up by users who click on ad banner advertising in adult content apps. Pop up advertisements for fake anti-virus software is also a common vehicle for the malware.
Once on the phone, Loapi constantly asks for administrator rights. “It doesn’t take no for an answer; notification after notification appears on the screen until the desperate user finally gives in and taps OK,” Kaspersky Lab explained.
The insidious app even shuts down the settings window and locks the screen if the person tries to deny it administrator rights. If the user tries to download anti-virus software to protect the phone, Loapi flags it as malware and demands it be removed.
After seizing administrator rights, the versatile malware manipulates the phone into carrying out a number of functions including mining the Monero cryptocurrency, signing the phone’s owner up to paid subscription services, plaguing them with more ads and even turning the phone into a zombie to be used in DDoS attacks.
“We’ve never seen such a ‘jack of all trades’ before,” Kaspersky Lab researchers wrote. Later in the post, they added: “The only thing missing is user espionage, but the modular architecture of this Trojan means it’s possible to add this sort of functionality at any time.”
— Policía Nacional (@policia) December 20, 2017