The Alien Android Botnet is a targeting Android devices, enabling users to remotely control compromised devices. Known for its advanced capabilities and stealthy operation, Alien Android Botnet It is often used for recovery sensitive information, intercepting communications, and conducting activities.
The Alien Android Botnet first emerged in late 2020, discovered by cybersecurity researchers who noticed its similarities to the Cerberus banking tool. Following the takedown of Cerberus, its source code was leaked, providing a foundation upon which Alien was built. This leak allowed the creators of Alien to adopt and enhance many of the sophisticated features that made Cerberus effective.
Features:
Overlaying: Dynamic (Local injects obtained from C2)
Keylogging
Remote access
SMS harvesting: SMS listing
SMS harvesting: SMS forwarding
Device info collection
Contact list collection
Application listing
Location collection
Overlaying: Targets list update
SMS: Sending
Calls: USSD request making
Calls: Call forwarding
Remote actions: App installing
Remote actions: App starting
Remote actions: App removal
Remote actions: Showing arbitrary web pages
Remote actions: Screen-locking
Notifications: Push notifications
C2 Resilience: Auxiliary C2 list
Self-protection: Hiding the App icon
Self-protection: Preventing removal
Self-protection: Emulation-detection
Download Alien Android Banking Botnet
