Most Wanted Malware: Snake Keylogger Makes a Move, Alienbot tops the Mobile Malware Section

What’s Snake Keylogger malware?

• Snake Keylogger malware has jumped into eighth place after a long absence from the list. 
• The malware's main functionality is to record users' keystrokes and transmit collected data to threat actors.
• Snake Keylogger returns to the top ten following email campaigns delivering the malware via PDF files.

How is Snake Keylogger malware spread?

• In May 2022, researchers reported that the malware has been spreading via PDF files. 
• The reason for the spread of Snake Keylogger malware could be due to Microsoft blocking the default internet macros in Office.
• Any malware exploring PDFs to infect victims is an effective way as many people perceive PDFs to be inherently safer than other file types.
• In the case of a Snake Keylogger, the malware is ready to strike once a user opens the PDF. 

Mobile malware becoming more widespread

AlienBot

• AlienBot malware is MaaS for Android devices that allows a remote attacker to inject malicious code into legitimate financial applications. 
• The attacker then obtains access to victims’ accounts, and eventually completely controls their devices.

FluBot

• FluBot, is an Android malware spread via phishing SMS messages (Smishing). 
• Once the user clicks the link inside the message, they are redirected to the download of a fake application containing FluBot. 
• Once installed the malware has various capabilities to harvest credentials and support the Smishing operation itself.

xHelper

• Active since 2019, the malware is used for downloading other malicious apps and display advertisements.
• It is capable of hiding itself from the user and reinstalling itself in the case that it was uninstalled.

Conclusion