There was a timely reminder from Lookout Security on Wednesday that not everything on official app stores is legitimate software, after the security firm revealed it found 13 apps containing the Brain Test malware on Google Play.
The malware was first spotted by
Check Point back in September using a range of privilege escalation exploits to install a rootkit on victim devices to achieve persistence.
Its primary goal is to download and install additional APKs as per the instructions coming from the C&C server, with the ultimate aim of making money for its creator by guaranteeing application installs for eager developers.
“There has been an emergence of entities, primarily originating from China, that have been selling guaranteed application-installs to developers,”
explained Lookout senior security analyst, Chris Dehghanpoor.
“In order to facilitate the installs, they rely on compromising a large number of devices and then pushing the installs to those devices. Similar tactics have been around for many years in the PC world, and we’ve seen multiple Android malware families take a similar approach.”
