Android fake application is capable of spreading itself via WhatsApp messages. If the user downloads the fake application and grants appropriate permissions, the malware is capable of automatically replying to victim’s incoming WhatsApp messages with a payload.
Sequretek Malware Analysis team recently analysed an android based malware that features innovative and dangerous new techniques for spreading itself, and for manipulating or stealing data from trusted applications such as WhatsApp.
An app named “FlixOnline” claims to allow users to view Netflix content from all around the world on their mobiles.
Instead of allowing the mobile user to view Netflix content, the application is designed to monitor the user’s WhatsApp notifications, and to send automatic replies to the user’s incoming messages using commands that it receives from a remote command and control (C&C) server.
Users should be very careful while downloading links or attachments that they receive via WhatsApp or other messaging apps, even when they appear to come from trusted contacts or messaging groups.