Ground Report | New Delhi: What is Joker malware; Android users should be on the lookout for a new threat in the form of malware. If a few months ago the risk came from the Sinbad malicious code, which infected more than 200 applications and affected more than 150 million users, the attention is now on Joker.
Currently, Joker is immersed in 14 applications, which are stealing data such as text messages, passwords, addresses, etc. The description of the apps that arrive through Google Play was reported through the Twitter of an analyst from Kaspersky Labs.
This Joker virus has been on the Internet since 2017 and has always attacked various Android users in the same way. It was already detected last August, but the work to get it off the map was not enough, since three months later, apps with malware to steal data increased.
ALSO READ: What is Drinik Android Malware?
List of apps
- Easy PDF Scanner
- Now QRCode Scan
- Super-Click VPN
- Volume Booster Louder Sound Equalizer
- Battery Charging Animation Bubble Effects
- Smart TV Remote
- Volume Boosting Hearing Aid
- Flashlight Flash Alert on Call
- Halloween Coloring
- Classic Emoji Keyboard
- Super Hero-Effect
- Dazzling Keyboard
- EmojiOne Keyboard
- Battery Charging Animation Wallpaper
- Blender Photo Editor-Easy Photo Background Editor
What is Joker malware?
In phase 1, Joker infects the device using malware to integrate itself into the system. It then identifies the country in which it is located and establishes command and control with hackers to a minimum, only what is necessary to receive the encrypted configuration.
Later, and as part of phase 2, this virus continues with decryption of the DEX file – an executable file saved in a format that contains compiled code written for Android – and loads it.
ALSO READ: Beware of WhatsApp crashing virus!
Likewise, it also steals SMS messages and data from the sender, our contact list, and device data, in addition to interacting with advertising websites to obtain money through the infected mobile phone.
Joker malware begins to function when, little by little, it manages to infect a messaging app, but it has been detected that it also begins to attack online payments.
Both techniques take advantage of the integration of the telephone operators with vendors, to facilitate the payment of services with the telephone bill.
Ways to avoid malware
- CERT-In says to always download the mobile app from Google Play store or App Store to avoid any virus or malware. These platforms are less likely to contain malware apps. This keeps your device safe from hackers.
- Hackers sometimes send phishing messages to hack the device. These messages contain malicious links, with the help of which hackers can easily crack the phone’s security and install viruses.
- Such messages should be deleted immediately. Also, always keep in mind that do not forget to open the link given in such a message.