What's new
By:
Filters
Runion

This is a sample guest message. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

Some thoughts on .apk traffic

B

boxilai

Midle Weight
Депозит
$0
what i learn:

The most successful transition to spreading .apk-based consumer malware requires working with active developers who can design basic applications using j or kotlin. For example, you can publish an app on the Google Play Store
Then, installed on the device, once the user opens the app, it gets real-time "updates" and replaces the updates with your malicious .apk from the external server.

There are two very important points, which greatly affect the success rate:

1.It's better to have an older developer certificate. Corporate developers are better than individual developers
2.It is very important to ensure that your malware never touches the Google Play Store
 
Regarding the "update" part, different loaders have different capabilities, which also affects the success rate.
 
boxilai сказал(а):
what i learn:

The most successful transition to spreading .apk-based consumer malware requires working with active developers who can design basic applications using j or kotlin. For example, you can publish an app on the Google Play Store
Then, installed on the device, once the user opens the app, it gets real-time "updates" and replaces the updates with your malicious .apk from the external server.

There are two very important points, which greatly affect the success rate:

1.It's better to have an older developer certificate. Corporate developers are better than individual developers
2.It is very important to ensure that your malware never touches the Google Play Store
Click to expand...

And how do you prevent it from making its way to the google store ?
 
You must log in or register to reply here.
Top